CVE-2012-4589

low

Trellix

CVSS v3 Base Score

2.1

AV:L/AC:L/Au:N/C:N/I:P/A:N

EPSS Score

0.1%

Exploitation probability in 30 days

Top 70% most likely to be exploited

Attack Characteristics

Attack Vector

Local

Attack Complexity

Low

Confidentiality

None

Integrity

Availability

None

Published: August 22, 2012 (5013 days ago)

Last Modified: April 29, 2026

Vendor: Trellix

Source: NVD

Description

Login.aspx in the Portal in McAfee Enterprise Mobility Manager (EMM) before 10.0 does not have an off autocomplete attribute for unspecified form fields, which makes it easier for remote attackers to obtain access by leveraging an unattended workstation.

CWE

NVD-CWE-Other

Affected Products

mcafee enterprise mobility manager

References

🔗 exchange.xforce.ibmcloud.com 🔗 kc.mcafee.com 🔗 exchange.xforce.ibmcloud.com 🔗 kc.mcafee.com

CVE-2012-4589

Vulnerability Report

Description

CWE

Affected Products

References