8 matches found
McAfee Data Loss Prevention Endpoint Access Control Error Vulnerability
McAfee Data Loss Prevention Endpoint DLPe is an integrated endpoint data protection solution from McAfee. The solution prevents theft and accidental disclosure of confidential data and provides security policies for file handling and transmission, shared endpoint data flow control and data...
PT-2018-17714 · Mcafee · Mcafee Data Loss Prevention Endpoint
Name of the Vulnerable Software and Affected Versions: McAfee Data Loss Prevention Endpoint DLPe versions 10.0.x through 10.0.509 McAfee Data Loss Prevention Endpoint DLPe versions 11.0.x through 11.0.599 Description: The issue allows attackers to bypass local security protection under specific...
McAfee Data Loss Prevention Endpoint EPO Extended Information Disclosure Vulnerability
McAfee Data Loss Prevention Endpoint DLPe is an integrated endpoint data protection solution from the U.S. company McAfee McAfee. A security vulnerability in the McAfee Data Loss Prevention Endpoint DLPe epo extension allows remote attackers to submit a special URL request to obtain sensitive...
CVE-2015-2760
CVE-2015-2760 is an XSS vulnerability in the McAfee DLPe ePO extension prior to 9.3 Patch 4 Hotfix 16 (9.3.416.4). The issue allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors in the ePO extension of DLPe. Affected product/version: McAfee Data Loss Pr...
CVE-2015-2758
The CVE-2015-2758 entry affects the McAfee Data Loss Prevention Endpoint (DLPe) ePO extension prior to 9.3 Patch 4 Hotfix 16 (9.3.416.4). The vulnerability allows remote authenticated users to obtain sensitive information, modify the database, or cause other unspecified impact via a crafted URL. ...
Sql injection
SQL injection vulnerability in the ePO extension in McAfee Data Loss Prevention Endpoint DLPe before 9.3.400 allows remote authenticated ePO users to execute arbitrary SQL commands via unspecified vectors...
CVE-2015-1616
SQL injection vulnerability in the ePO extension in McAfee Data Loss Prevention Endpoint DLPe before 9.3.400 allows remote authenticated ePO users to execute arbitrary SQL commands via unspecified vectors...
CVE-2015-1618
The CVE-2015-1618 issue affects the McAfee Data Loss Prevention Endpoint (DLPe) ePO extension prior to 9.3.400. A remote, authenticated user can obtain sensitive password information via a specially crafted URL, due to insufficient access checks in the ePO extension. Impact is information disclos...