CVE-2012-4591
McAfee Enterprise Mobility Manager < 10.0 - Unauthenticated Sensitive Information Exposure via About.aspx
Title source: llmDescription
About.aspx in the Portal in McAfee Enterprise Mobility Manager (EMM) before 10.0 discloses the name of the user account for an IIS worker process, which allows remote attackers to obtain potentially sensitive information by visiting this page.
References (2)
Core 2
Core References
Vendor Advisory x_refsource_confirm
https://kc.mcafee.com/corporate/index?page=content&id=SB10022
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/78221
Scores
EPSS
0.0025
EPSS Percentile
48.3%
Details
CWE
CWE-200
Status
published
Products (2)
mcafee/enterprise_mobility_manager
4.7
mcafee/enterprise_mobility_manager
< 9.6
Published
Aug 22, 2012
Tracked Since
Feb 18, 2026