CVE-2020-7304 DLP ePO extension - Cross-site request forgery

🗓️ 13 Aug 2020 03:00:19Reported by trellixType

McAfee DLP ePO extension vulnerabilit

Reporter	Title	Published	Views	Family All 8
CNVD	McAfee Data Loss Prevention ePO extension Cross-Site Request Forgery Vulnerability	18 Aug 202000:00	–	cnvd
CVE	CVE-2020-7304	13 Aug 202003:00	–	cve
EUVD	EUVD-2020-28431	7 Oct 202500:30	–	euvd
Tenable Nessus	McAfee Data Loss Prevention ePO extension Multiple Vulnerabilities (SB10326)	21 Aug 202000:00	–	nessus
NVD	CVE-2020-7304	13 Aug 202003:15	–	nvd
OSV	CVE-2020-7304	13 Aug 202003:15	–	osv
Prion	Cross site request forgery (csrf)	13 Aug 202003:15	–	prion
RedhatCVE	CVE-2020-7304	9 Jan 202608:36	–	redhatcve

[
  {
    "product": "DLP ePO extension",
    "vendor": "McAfee",
    "versions": [
      {
        "lessThan": "11.3.28",
        "status": "affected",
        "version": "11.3",
        "versionType": "custom"
      },
      {
        "lessThan": "11.4.200",
        "status": "affected",
        "version": "11.4",
        "versionType": "custom"
      },
      {
        "lessThan": "11.5.3",
        "status": "affected",
        "version": "11.5",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
kc	www.kc.mcafee.com/corporate/index

13 Aug 2020 03:00Current

7.4High risk

Vulners AI Score7.4

CVSS 3.17.6

EPSS0.00089

CWE-352