CVE-2017-3972

Infrastructure-based foot printing vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows attackers to execute arbitrary code via the server banner leaking potentially sensitive or security relevant information.

Published: Apr 4, 2018
Updated: Apr 13, 2023
CVE: CVE-2017-3972
Severity: Critical
Exploit:

CVSS v3:

Severity: Critical
Score: 9.8
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

CWEs:

CWE-200

Affected Software
References

Software	From	Fixed in
mcafee / network_security_manager	-	8.2.7.42.2

https://kc.mcafee.com/corporate/index?page=content&id=SB10192

Vulnerability Database

289,697

CVE-2017-3972