Directory traversal vulnerability in McAfee Cloud Identity Manager 3.0, 3.1, and 3.5.1, McAfee Cloud Single Sign On (MCSSO) before 4.0.1, and Intel Expressway Cloud Access 360-SSO 2.1 and 2.5 allows remote authenticated users to read an unspecified file containing a hash of the administrator password via unknown vectors.
2014-03-18T17:04:18.467
2025-04-12T10:46:40.837
Deferred
CVSSv2: 4.3 (MEDIUM)
AV:N/AC:M/Au:N/C:P/I:N/A:N
8.6
2.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | intel | expressway_cloud_access_360 | 2.1 | Yes |
| Application | intel | expressway_cloud_access_360 | 2.5 | Yes |
| Application | mcafee | cloud_identity_manager | 3.0 | Yes |
| Application | mcafee | cloud_identity_manager | 3.1 | Yes |
| Application | mcafee | cloud_identity_manager | 3.5.1 | Yes |
| Application | mcafee | cloud_single_sign_on | 4.0.0 | Yes |