CVE-2012-4589

Login.aspx in the Portal in McAfee Enterprise Mobility Manager (EMM) before 10.0 does not have an off autocomplete attribute for unspecified form fields, which makes it easier for remote attackers to obtain access by leveraging an unattended workstation.

Published: Aug 22, 2012
Updated: Apr 13, 2023
CVE: CVE-2012-4589
Severity: Low
Exploit:

CVSS v2:

Severity: Low
Score: 2.1
AV:L/AC:L/Au:N/C:N/I:P/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
mcafee / enterprise_mobility_manager	4.7	4.7.x
mcafee / enterprise_mobility_manager	-	9.6.x

https://exchange.xforce.ibmcloud.com/vulnerabilities/78223
https://kc.mcafee.com/corporate/index?page=content&id=SB10022

Vulnerability Database

289,697

CVE-2012-4589