CVE-2014-6064

Published: Sep 2, 2014Modified: May 6, 2026

4.0

Vector

AV:N/AC:L/Au:S/C:P/I:N/A:N

Exploitability: 8.0 / Impact: 2.9

Source: NVD

Description

The Accounts tab in the administrative user interface in McAfee Web Gateway (MWG) before 7.3.2.9 and 7.4.x before 7.4.2 allows remote authenticated users to obtain the hashed user passwords via unspecified vectors.

Affected (2)

Products: Mcafee: Web Gateway

Mcafee

1 product

Web Gateway

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Mcafee Web Gateway	From 7.3.0 to 7.3.2.9
Mcafee Web Gateway	From 7.4.0 to 7.4.2

Related CWEs

CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (6)

http://www.securitytracker.com/id/1030675

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

https://exchange.xforce.ibmcloud.com/vulnerabilities/95690

Source: cve@mitre.org

VDB Entry

https://kc.mcafee.com/corporate/index?page=content&id=SB10080

Source: cve@mitre.org

Vendor Advisory

http://www.securitytracker.com/id/1030675

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

https://exchange.xforce.ibmcloud.com/vulnerabilities/95690

Source: af854a3a-2127-422b-91ae-364da2661108

VDB Entry

https://kc.mcafee.com/corporate/index?page=content&id=SB10080

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.