CVE-2014-8534 : Unspecified vulnerability in the login form in McAfee Network Data Loss Prevention (NDLP) before 9.2.2 allows local user

Unspecified vulnerability in the login form in McAfee Network Data Loss Prevention (NDLP) before 9.2.2 allows local users to cause a denial of service via a crafted value in the domain field.

Published 2014-10-29 14:55:05

Updated 2014-10-30 14:44:21

Source MITRE

View at NVD, CVE.org

Vulnerability category: Denial of service

Exploit prediction scoring system (EPSS) score for CVE-2014-8534

Probability of exploitation activity in the next 30 days: 0.04%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 6 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2014-8534

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
2.1	LOW	AV:L/AC:L/Au:N/C:N/I:N/A:P	3.9	2.9	NIST
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: None Availability Impact: Partial

References for CVE-2014-8534

https://kc.mcafee.com/corporate/index?page=content&id=SB10044

Vendor Advisory

CVEs referencing this url

Products affected by CVE-2014-8534

Mcafee » Network Data Loss Prevention
Versions up to, including, (<=) 9.2.1
cpe:2.3:a:mcafee:network_data_loss_prevention:*:*:*:*:*:*:*:*
Matching versions
Mcafee » Network Data Loss Prevention » Version: 9.2.0
cpe:2.3:a:mcafee:network_data_loss_prevention:9.2.0:*:*:*:*:*:*:*
Matching versions
Mcafee » Network Data Loss Prevention » Version: 8.6
cpe:2.3:a:mcafee:network_data_loss_prevention:8.6:*:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2014-8534

Exploit prediction scoring system (EPSS) score for CVE-2014-8534

CVSS scores for CVE-2014-8534

References for CVE-2014-8534

Products affected by CVE-2014-8534