CVE-2020-7303 DLP ePO extension - Cross-site scripting

🗓️ 13 Aug 2020 02:55:13Reported by trellixType

McAfee DLP ePO extension XSS vulnerabilit

Reporter	Title	Published	Views	Family All 7
CNVD	McAfee Data Loss Prevention ePO extension cross-site scripting vulnerability (CNVD-2020-48598)	18 Aug 202000:00	–	cnvd
CVE	CVE-2020-7303	13 Aug 202002:55	–	cve
EUVD	EUVD-2020-28430	7 Oct 202500:30	–	euvd
Tenable Nessus	McAfee Data Loss Prevention ePO extension Multiple Vulnerabilities (SB10326)	21 Aug 202000:00	–	nessus
NVD	CVE-2020-7303	13 Aug 202003:15	–	nvd
Prion	Cross site scripting	13 Aug 202003:15	–	prion
RedhatCVE	CVE-2020-7303	9 Jan 202609:08	–	redhatcve

[
  {
    "product": "DLP ePO extension",
    "vendor": "McAfee",
    "versions": [
      {
        "lessThan": "11.3.28",
        "status": "affected",
        "version": "11.3",
        "versionType": "custom"
      },
      {
        "lessThan": "11.4.200",
        "status": "affected",
        "version": "11.4",
        "versionType": "custom"
      },
      {
        "lessThan": "11.5.3",
        "status": "affected",
        "version": "11.5",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
kc	www.kc.mcafee.com/corporate/index

13 Aug 2020 02:55Current

5Medium risk

Vulners AI Score5

CVSS 3.14.1

EPSS0.00436

CWE-79