← back
CVE-2017-4011

CVE-2017-4011

EPSS 3.3%
Embedding Script (XSS) in HTTP Headers vulnerability in the server in McAfee Network Data Loss Prevention (NDLP) 9.3.x allows remote attackers to get session/cookie information via modification of the HTTP request.
Affected products
McAfee · Network Data Loss Prevention (NDLP)

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://kc.mcafee.com/corporate/index?page=content&id=SB10198http://www.securitytracker.com/id/1038523