CVE-2017-4016

MEDIUM

McAfee NDLP <9.3.x - Info Disclosure

Title source: llm

Description

Web Server method disclosure in the server in McAfee Network Data Loss Prevention (NDLP) 9.3.x allows remote attackers to exploit and find another hole via HTTP response header.

References (2)

[Vendor Advisory] https://kc.mcafee.com/corporate/index?page=content&id=SB10198

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id/1038523

Scores

CVSS v3 5.3

EPSS 0.0021

EPSS Percentile 43.6%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Details

CWE

CWE-200

Status published

Products (2)

mcafee/network_data_loss_prevention < 9.3.0

McAfee/Network Data Loss Prevention (NDLP) < 9.3.x

Published May 17, 2017

Tracked Since Feb 18, 2026