Lucene search
TrellixCVELIST:CVE-2020-7301HistoryAug 12, 2020 - 10:10 p.m.
CVE-2020-7301 DLP ePO extension - Cross site scripting
2020-08-1222:10:13
CWE-79
trellix
www.cve.org
4
mcafee
dlp
xss
vulnerability
epo
extension
CVSS3
4.1
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
AI Score
5.3
Confidence
High
EPSS
0.001
Percentile
22.7%
Cross Site scripting vulnerability in McAfee Data Loss Prevention (DLP) ePO extension prior to 11.5.3 allows authenticated attackers to trigger alerts via the file upload tab in the DLP case management section.
CNA Affected
[
{
"product": "DLP ePO extension",
"vendor": "McAfee",
"versions": [
{
"lessThan": "11.3.28",
"status": "affected",
"version": "11.3",
"versionType": "custom"
},
{
"lessThan": "11.4.200",
"status": "affected",
"version": "11.4",
"versionType": "custom"
},
{
"lessThan": "11.5.3",
"status": "affected",
"version": "11.5",
"versionType": "custom"
}
]
}
]Related
cve
cve
CVE-2020-7301
2020-08-12 22:15:12
nvd
nvd
CVE-2020-7301
2020-08-12 22:15:12
prion
prion
Cross site scripting
2020-08-12 22:15:00
nessus
nessus
McAfee Data Loss Prevention ePO extension Multiple Vulnerabilities (SB10326)
2020-08-21 00:00:00
CVSS3
4.1
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
LOW
Integrity Impact
LOW
Availability Impact
NONE
CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N
AI Score
5.3
Confidence
High
EPSS
0.001
Percentile
22.7%
Related for CVELIST:CVE-2020-7301