CVE-2014-9921

Name of the Vulnerable Software and Affected Versions McAfee Cloud Analysis and Deconstructive Services (CADS) versions 1.0.0.3x, 1.0.0.4d and earlier

Description The issue is related to an information disclosure error in the configuration of McAfee Cloud Analysis and Deconstructive Services (CADS), allowing remote unauthenticated users to view, add, and remove users.

Recommendations For versions 1.0.0.3x, 1.0.0.4d and earlier, update to a version that fixes the configuration error to prevent unauthorized user management. At the moment, there is no information about a newer version that contains a fix for this vulnerability.