CVE-2014-8524
McAfee Network Data Loss Prevention < 9.3 - Unauthenticated Exposure of Sensitive Information via Autocomplete
Title source: llmDescription
McAfee Network Data Loss Prevention (NDLP) before 9.3 does not disable the autocomplete setting for the password and other fields, which allows remote attackers to obtain sensitive information via unspecified vectors.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
https://kc.mcafee.com/corporate/index?page=content&id=SB10053
Scores
EPSS
0.0040
EPSS Percentile
61.0%
Details
CWE
CWE-200
Status
published
Products (4)
mcafee/network_data_loss_prevention
8.6
mcafee/network_data_loss_prevention
9.2.0
mcafee/network_data_loss_prevention
9.2.1
mcafee/network_data_loss_prevention
< 9.2.2
Published
Oct 29, 2014
Tracked Since
Feb 18, 2026