cnvd - cnvd-2018-10643

cnvd-2018-10643

Vulnerability from cnvd

Title: McAfee Network Security Management跨站脚本漏洞（CNVD-2018-10643）

Description:

McAfee Network Security Management（NSM）是美国迈克菲（McAfee）公司的一套能够实时监控整个网络中已部署的迈克菲入侵防护系统的网络安全解决方案。

McAfee NSM 8.2.7.42.2之前版本中的Web界面存在跨站脚本漏洞。远程攻击者可借助特制的用户输入利用该漏洞将任意HTML代码反射到响应页面。

Severity: 中

Patch Name: McAfee Network Security Management跨站脚本漏洞（CNVD-2018-10643）的补丁

Patch Description:

McAfee Network Security Management（NSM）是美国迈克菲（McAfee）公司的一套能够实时监控整个网络中已部署的迈克菲入侵防护系统的网络安全解决方案。

McAfee NSM 8.2.7.42.2之前版本中的Web界面存在跨站脚本漏洞。远程攻击者可借助特制的用户输入利用该漏洞将任意HTML代码反射到响应页面。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description:

目前厂商已发布升级补丁以修复漏洞，补丁获取链接： https://kc.mcafee.com/corporate/index?page=content&id=SB10192

Reference: https://kc.mcafee.com/corporate/index?page=content&id=SB10192

Impacted products

Name
McAfee Network Security Management <8.2.7.42.2

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2017-3961"
    }
  },
  "description": "McAfee Network Security Management\uff08NSM\uff09\u662f\u7f8e\u56fd\u8fc8\u514b\u83f2\uff08McAfee\uff09\u516c\u53f8\u7684\u4e00\u5957\u80fd\u591f\u5b9e\u65f6\u76d1\u63a7\u6574\u4e2a\u7f51\u7edc\u4e2d\u5df2\u90e8\u7f72\u7684\u8fc8\u514b\u83f2\u5165\u4fb5\u9632\u62a4\u7cfb\u7edf\u7684\u7f51\u7edc\u5b89\u5168\u89e3\u51b3\u65b9\u6848\u3002\r\n\r\nMcAfee NSM 8.2.7.42.2\u4e4b\u524d\u7248\u672c\u4e2d\u7684Web\u754c\u9762\u5b58\u5728\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u501f\u52a9\u7279\u5236\u7684\u7528\u6237\u8f93\u5165\u5229\u7528\u8be5\u6f0f\u6d1e\u5c06\u4efb\u610fHTML\u4ee3\u7801\u53cd\u5c04\u5230\u54cd\u5e94\u9875\u9762\u3002",
  "discovererName": "McAfee",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://kc.mcafee.com/corporate/index?page=content\u0026id=SB10192",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2018-10643",
  "openTime": "2018-05-30",
  "patchDescription": "McAfee Network Security Management\uff08NSM\uff09\u662f\u7f8e\u56fd\u8fc8\u514b\u83f2\uff08McAfee\uff09\u516c\u53f8\u7684\u4e00\u5957\u80fd\u591f\u5b9e\u65f6\u76d1\u63a7\u6574\u4e2a\u7f51\u7edc\u4e2d\u5df2\u90e8\u7f72\u7684\u8fc8\u514b\u83f2\u5165\u4fb5\u9632\u62a4\u7cfb\u7edf\u7684\u7f51\u7edc\u5b89\u5168\u89e3\u51b3\u65b9\u6848\u3002\r\n\r\nMcAfee NSM 8.2.7.42.2\u4e4b\u524d\u7248\u672c\u4e2d\u7684Web\u754c\u9762\u5b58\u5728\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u501f\u52a9\u7279\u5236\u7684\u7528\u6237\u8f93\u5165\u5229\u7528\u8be5\u6f0f\u6d1e\u5c06\u4efb\u610fHTML\u4ee3\u7801\u53cd\u5c04\u5230\u54cd\u5e94\u9875\u9762\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "McAfee Network Security Management\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\uff08CNVD-2018-10643\uff09\u7684\u8865\u4e01",
  "products": {
    "product": "McAfee Network Security Management \u003c8.2.7.42.2"
  },
  "referenceLink": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10192",
  "serverity": "\u4e2d",
  "submitTime": "2018-05-29",
  "title": "McAfee Network Security Management\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\uff08CNVD-2018-10643\uff09"
}

CVE-2017-3961 (GCVE-0-2017-3961)

Vulnerability from cvelistv5

Published

2018-05-25 13:00

Modified

2024-09-16 23:15

Severity ?

3.5 (Low) - CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:L

CWE

Cross-Site Scripting (XSS) vulnerability

Summary

Cross-Site Scripting (XSS) vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows authenticated users to allow arbitrary HTML code to be reflected in the response web page via crafted user input of attributes.

References

▼	URL	Tags
	https://kc.mcafee.com/corporate/index?page=content&id=SB10192	x_refsource_CONFIRM

Impacted products

	Vendor	Product	Version
	McAfee	Network Security Management (NSM)	Version: 8.2.7.42.2 < 8.2.7.42.2

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T14:39:41.300Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10192"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "platforms": [
            "x86"
          ],
          "product": "Network Security Management (NSM)",
          "vendor": "McAfee",
          "versions": [
            {
              "lessThan": "8.2.7.42.2",
              "status": "affected",
              "version": "8.2.7.42.2",
              "versionType": "custom"
            }
          ]
        }
      ],
      "datePublic": "2017-03-29T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Cross-Site Scripting (XSS) vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows authenticated users to allow arbitrary HTML code to be reflected in the response web page via crafted user input of attributes."
        }
      ],
      "metrics": [
        {
          "cvssV3_0": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 3.5,
            "baseSeverity": "LOW",
            "confidentialityImpact": "NONE",
            "integrityImpact": "LOW",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:L",
            "version": "3.0"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Cross-Site Scripting (XSS) vulnerability",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-05-25T12:57:01",
        "orgId": "01626437-bf8f-4d1c-912a-893b5eb04808",
        "shortName": "trellix"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10192"
        }
      ],
      "source": {
        "advisory": "SB10192",
        "discovery": "INTERNAL"
      },
      "title": "SB10192 - Network Security Management (NSM) - Cross-Site Scripting (XSS) vulnerability",
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@mcafee.com",
          "DATE_PUBLIC": "2017-03-29T17:00:00.000Z",
          "ID": "CVE-2017-3961",
          "STATE": "PUBLIC",
          "TITLE": "SB10192 - Network Security Management (NSM) - Cross-Site Scripting (XSS) vulnerability"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Network Security Management (NSM)",
                      "version": {
                        "version_data": [
                          {
                            "affected": "\u003c",
                            "platform": "x86",
                            "version_affected": "\u003c",
                            "version_name": "8.2.7.42.2",
                            "version_value": "8.2.7.42.2"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "McAfee"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Cross-Site Scripting (XSS) vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows authenticated users to allow arbitrary HTML code to be reflected in the response web page via crafted user input of attributes."
            }
          ]
        },
        "impact": {
          "cvss": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 3.5,
            "baseSeverity": "LOW",
            "confidentialityImpact": "NONE",
            "integrityImpact": "LOW",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:L/A:L",
            "version": "3.0"
          }
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Cross-Site Scripting (XSS) vulnerability"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10192",
              "refsource": "CONFIRM",
              "url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10192"
            }
          ]
        },
        "source": {
          "advisory": "SB10192",
          "discovery": "INTERNAL"
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "01626437-bf8f-4d1c-912a-893b5eb04808",
    "assignerShortName": "trellix",
    "cveId": "CVE-2017-3961",
    "datePublished": "2018-05-25T13:00:00Z",
    "dateReserved": "2016-12-26T00:00:00",
    "dateUpdated": "2024-09-16T23:15:49.235Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted