CVE-2014-9921

Published: Mar 14, 2017Modified: May 13, 2026

9.8

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

Information disclosure vulnerability in McAfee (now Intel Security) Cloud Analysis and Deconstructive Services (CADS) 1.0.0.3x, 1.0.0.4d and earlier allows remote unauthenticated users to view, add, and remove users via a configuration error.

Affected (2)

Products: Mcafee: Cloud Analysis And Deconstructive Services

Mcafee

1 product

Cloud Analysis And Deconstructive Services

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Mcafee Cloud Analysis And Deconstructive Services	Up to 1.0.0.4d
Mcafee Cloud Analysis And Deconstructive Services	Version 1.0.0.3

Related CWEs

CWE-264

References (2)

https://kc.mcafee.com/corporate/index?page=content&id=SB10087

Source: secure@intel.com

Vendor Advisory

https://kc.mcafee.com/corporate/index?page=content&id=SB10087

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.