CVE-2016-8018

Cross-site request forgery (CSRF) vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier) allows authenticated remote attackers to execute unauthorized commands via a crafted user input.

Published: Mar 14, 2017
Updated: Apr 13, 2023
CVE: CVE-2016-8018
Severity: Low
Exploit:

CVSS v3:

Severity: Low
Score: 4.3
AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:L/A:L

CVSS v2:

Severity: Medium
Score: 6
AV:N/AC:M/Au:S/C:P/I:P/A:P

CWEs:

CWE-352

Affected Software
References

Software	From	Fixed in
mcafee / virusscan_enterprise	-	2.0.3.x

http://www.securityfocus.com/bid/94823
http://www.securitytracker.com/id/1037433
https://kc.mcafee.com/corporate/index?page=content&id=SB10181
https://www.exploit-db.com/exploits/40911/

Vulnerability Database

289,697

CVE-2016-8018