CVE-2021-45105

>= 2.0 and < 3.0

Apache Log4j2 versions 2.0-alpha1 through 2.16.0 (excluding 2.12.3 and 2.3.1) did not protect from uncontrolled recursion from sel

5.9MEDIUM

CVE-2021-4038

< 10.1.7.48

Cross Site Scripting (XSS) vulnerability in McAfee Network Security Manager (NSM) prior to 10.1 Minor 7 allows a remote authentica

4.8MEDIUM

CVE-2021-20026

< 2.2.0

A vulnerability in the SonicWall NSM On-Prem product allows an authenticated attacker to perform OS command injection using a craf

8.8HIGH

CVE-2020-7258

< 9.1.7.80

Cross site scripting vulnerability in McAfee Network Security Management (NSM) Prior to 9.1 update 6 Mar 2020 Update allows attack

4.8MEDIUM

CVE-2020-7256

< 9.1.7.80

Cross site scripting vulnerability in McAfee Network Security Management (NSM) Prior to 9.1 update 6 Mar 2020 Update allows attack

4.8MEDIUM

CVE-2019-3602

< 9.1

Cross Site Scripting (XSS) vulnerability in McAfee Network Security Manager (NSM) Prior to 9.1 Update 5 allows an authenticated ad

4.8MEDIUM

CVE-2019-3606

>= 9.1 and < 9.1.7.75

Data Leakage Attacks vulnerability in the web portal component when in an MDR pair in McAfee Network Security Management (NSM) 9.1

7.7HIGH

CVE-2019-3597

>= 9.1 and < 9.1.7.75

Authentication Bypass vulnerability in McAfee Network Security Manager (NSM) 9.1 < 9.1.7.75.2 and 9.2 < 9.2.7.31 (9.2 Update 2) al

6.5MEDIUM

CVE-2018-6681

<= 9.1.7.11

Abuse of Functionality vulnerability in the web interface in McAfee Network Security Management (NSM) 9.1.7.11 and earlier allows

5.4MEDIUM

CVE-2017-3968

< 8.2.7.42.2

Session fixation vulnerability in the web interface in McAfee Network Security Manager (NSM) before 8.2.7.42.2 and McAfee Network

7.5HIGH

CVE-2017-3962

< 8.2.7.42.2

Password recovery exploitation vulnerability in the non-certificate-based authentication mechanism in McAfee Network Security Mana

5.6MEDIUM

CVE-2017-3960

< 8.2.7.42.2

Exploitation of Authorization vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 all

5.9MEDIUM

CVE-2017-3961

< 8.2.7.42.2

Cross-Site Scripting (XSS) vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows

3.5LOW

CVE-2017-3971

< 8.2.7.42.2

Cryptanalysis vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows attackers to

8.2HIGH

CVE-2017-3969

< 8.2.7.42.2

Abuse of communication channels vulnerability in the server in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows m

8.2HIGH

CVE-2017-3967

< 8.2.7.42.2

Target influence via framing vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allo

6.1MEDIUM

CVE-2017-3966

< 8.2.7.42.2

Exploitation of session variables, resource IDs and other trusted credentials vulnerability in the web interface in McAfee Network

6.4MEDIUM

CVE-2017-3965

< 8.2.7.42.2

Cross-Site Request Forgery (CSRF) (aka Session Riding) vulnerability in the web interface in McAfee Network Security Management (N

8.8HIGH

CVE-2017-3964

< 8.2.7.42.2

Reflective Cross-Site Scripting (XSS) vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.

3.5LOW

CVE-2017-3972

< 8.2.7.42.2

Infrastructure-based foot printing vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.

8.3HIGH

CVE-2014-2390

>= 6.1.15 and < 6.1.15.39

Cross-site request forgery (CSRF) vulnerability in the User Management module in McAfee Network Security Manager (NSM) before 6.1.