CVE-2014-6064
McAfee Web Gateway 7.3.0-7.3.2.8 and 7.4.x < 7.4.2 - Authenticated Exposure of Hashed User Passwords via Accounts Tab
Title source: llmDescription
The Accounts tab in the administrative user interface in McAfee Web Gateway (MWG) before 7.3.2.9 and 7.4.x before 7.4.2 allows remote authenticated users to obtain the hashed user passwords via unspecified vectors.
References (3)
Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1030675
Vendor Advisory x_refsource_confirm
https://kc.mcafee.com/corporate/index?page=content&id=SB10080
VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/95690
Scores
EPSS
0.0024
EPSS Percentile
47.8%
Details
CWE
CWE-200
Status
published
Products (1)
mcafee/web_gateway
7.3.0 - 7.3.2.9
Published
Sep 02, 2014
Tracked Since
Feb 18, 2026