CVE-2014-8524
McAfee Network Data Loss Prevention < 9.3 - Unauthenticated Exposure of Sensitive Information via Autocomplete
Title source: llmDescription
McAfee Network Data Loss Prevention (NDLP) before 9.3 does not disable the autocomplete setting for the password and other fields, which allows remote attackers to obtain sensitive information via unspecified vectors.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
https://kc.mcafee.com/corporate/index?page=content&id=SB10053
Scores
EPSS
0.0119
EPSS Percentile
64.2%
Details
CWE
CWE-200
Status
published
Products (4)
mcafee/network_data_loss_prevention
8.6
mcafee/network_data_loss_prevention
9.2.0
mcafee/network_data_loss_prevention
9.2.1
mcafee/network_data_loss_prevention
< 9.2.2
Published
Oct 29, 2014
Tracked Since
Feb 18, 2026