CVE-2014-1473

medium Trellix
CVSS v3 Base Score
6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P
EPSS Score
0.3%
Exploitation probability in 30 days
Top 50% most likely to be exploited
Attack Characteristics
Attack Vector
Network
Attack Complexity
M
Confidentiality
P
Integrity
P
Availability
P
Published: January 16, 2014 (4502 days ago)
Last Modified: April 29, 2026
Vendor: Trellix
Source: NVD

Description

Multiple cross-site request forgery (CSRF) vulnerabilities in the Enterprise Manager in McAfee Vulnerability Manager (MVM) 7.5.5 and earlier allow remote attackers to hijack the authentication of users for requests that modify HTML via unspecified vectors related to the "response web page."

CWE

CWE-352

Affected Products

mcafee vulnerability manager

References

🔗 osvdb.org 🔗 secunia.com 🔗 www.securityfocus.com 🔗 www.securitytracker.com 🔗 exchange.xforce.ibmcloud.com