Directory traversal vulnerability in McAfee Web Gateway (MWG) 7.4.x before 7.4.1, 7.3.x before 7.3.2.6, and 7.2.0.9 and earlier allows remote authenticated users to read arbitrary files via a crafted request to the web filtering port.
References
Link | Resource |
---|---|
http://secunia.com/advisories/56958 | Vendor Advisory |
https://kc.mcafee.com/corporate/index?page=content&id=SB10063 | Vendor Advisory |
http://www.securityfocus.com/bid/66193 | Third Party Advisory VDB Entry |
https://exchange.xforce.ibmcloud.com/vulnerabilities/91772 | VDB Entry |
Configurations
Configuration 1 (hide)
|
Information
Published : 2014-03-18 10:04
Updated : 2018-12-13 10:21
NVD link : CVE-2014-2535
Mitre link : CVE-2014-2535
JSON object : View
CWE
CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
Products Affected
mcafee
- web_gateway