CVE-2014-8524

Medium CVSS 5.0

Overview

McAfee Network Data Loss Prevention (NDLP) before 9.3 does not disable the autocomplete setting for the password and other fields, which allows remote attackers to obtain sensitive information via unspecified vectors.

CWE: CWE-200 Published: 2014-10-29T14:55:04.610

Risk analysis

This vulnerability is rated 🟡 MEDIUM.

CVSS: 5.0 (MEDIUM)
Detected tags: none (tag impact: LOW)

Recommended actions:

Prioritize remediation based on business criticality and exposure.
Limit exposure and increase monitoring until fixed.

Overview

Recommended tools

Tags