CVE-2015-1619

McAfee Email Gateway <7.6.3.2-7.0.5-5.6 - XSS

Title source: llm

Description

Cross-site scripting (XSS) vulnerability in the Secure Web Mail Client user interface in McAfee Email Gateway (MEG) 7.6.x before 7.6.3.2, 7.5.x before 75.6, 7.0.x through 7.0.5, 5.6, and earlier allows remote authenticated users to inject arbitrary web script or HTML via unspecified tokens in Digest messages.

References (1)

Scores

EPSS 0.0019
EPSS Percentile 40.0%

Classification

CWE
CWE-79
Status draft

Affected Products (17)

mcafee/email_gateway < 5.6
mcafee/email_gateway
mcafee/email_gateway
mcafee/email_gateway
mcafee/email_gateway
mcafee/email_gateway
mcafee/email_gateway
mcafee/email_gateway
mcafee/email_gateway
mcafee/email_gateway
mcafee/email_gateway
mcafee/email_gateway
mcafee/email_gateway
mcafee/email_gateway
mcafee/email_gateway
... and 2 more

Timeline

Published Feb 17, 2015
Tracked Since Feb 18, 2026