CVE-2018-6667

McAfee Web Gateway - Authentication Bypass vulnerability

CVSS 10 CRITICALEPSS 3.5%

Authentication Bypass vulnerability in the administrative user interface in McAfee Web Gateway 7.8.1.0 through 7.8.1.5 allows remote attackers to execute arbitrary code via Java management extensions (JMX).

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H

Affected products

McAfee · Web Gateway

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://kc.mcafee.com/corporate/index?page=content&id=SB10241 http://www.securityfocus.com/bid/104564 http://www.securitytracker.com/id/1041129