CVE-2018-6682
MEDIUMMcAfee True Key < 4.0.0.0 - Cross-Site Scripting via Crafted Website
Title source: llmDescription
Cross Site Scripting Exposure in McAfee True Key (TK) 4.0.0.0 and earlier allows local users to expose confidential data via a crafted web site.
References (1)
Core 1
Core References
Various Sources x_refsource_confirm
https://service.mcafee.com/webcenter/portal/cp/home/articleview?articleId=TS102825
Scores
CVSS v3
6.1
EPSS
0.0035
EPSS Percentile
57.6%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Details
CWE
CWE-79
Status
published
Products (1)
mcafee/true_key
< 4.0.0.0
Published
Sep 24, 2018
Tracked Since
Feb 18, 2026