CVE-2014-8522

Mcafee Network Data Loss Prevention < 9.2.2 - Authentication Bypass

Title source: rule

Description

The MySQL database in McAfee Network Data Loss Prevention (NDLP) before 9.3 does not require a password, which makes it easier for remote attackers to obtain access.

References (1)

[Vendor Advisory] https://kc.mcafee.com/corporate/index?page=content&id=SB10053

Scores

EPSS 0.0057

EPSS Percentile 68.4%

Classification

CWE

CWE-287

Status draft

Affected Products (4)

mcafee/network_data_loss_prevention < 9.2.2

mcafee/network_data_loss_prevention

Timeline

Published Oct 29, 2014

Tracked Since Feb 18, 2026