PT-2012-5498 · Mcafee · Mcafee Enterprise Mobility Manager

Published

2012-08-22

Updated

2017-08-29

CVE-2012-4590

CVSS v2.0

4.3

Medium

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions McAfee Enterprise Mobility Manager (EMM) versions prior to 10.0

Description The issue concerns multiple cross-site scripting (XSS) vulnerabilities in the About.aspx page of the Portal in McAfee Enterprise Mobility Manager (EMM). These vulnerabilities might allow remote attackers to inject arbitrary web script or HTML via the User Agent or Connection variable.

Recommendations For versions prior to 10.0, update to version 10.0 or later to resolve the issue.

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2012-4590

Affected Products

Mcafee Enterprise Mobility Manager

PT-2012-5498 · Mcafee · Mcafee Enterprise Mobility Manager

CVE-2012-4590

Weakness Enumeration

Related Identifiers

Affected Products

References · 3