Lucene search
K

11 matches found

OSV
OSV
added 2023/11/27 11:15 a.m.5 views

CVE-2023-5607

An improper limitation of a path name to a restricted directory path traversal vulnerability in the TACC ePO extension, for on-premises ePO servers, prior to version 8.4.0 could lead to an authorised administrator attacker executing arbitrary code through uploading a specially crafted GTI...

7.2CVSS5.9AI score
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2021/12/07 12:0 a.m.3 views

The vulnerability of the ePolicy Orchestrator extension of the McAfee Data Loss protection software allows a hacker to execute arbitrary SQL code.

The vulnerability of the ePolicy Orchestrator extension of the McAfee Data Loss Prevention software lies in the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows an attacker to execute arbitrary SQL code remotely, using the user management section...

8.4CVSS7.7AI score0.01044EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2021/11/01 12:0 a.m.7 views

McAfee Data Loss Prevention 跨站脚本漏洞

Mcafee McAfee Data Loss Prevention DLP is a data loss prevention suite from McAfee, Inc. that includes components such as McAfee DLP Monitor, McAfee DLP Endpoint, and provides event management and reporting, synchronization of local and cloud DLP policies, and more. A cross-site scripting...

8.4CVSS6AI score0.00786EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2021/04/01 12:0 a.m.3 views

The vulnerability of the ePolicy Orchestrator extension of the McAfee Data Loss Prevention software allows a hacker to upload malicious files.

The vulnerability of the ePolicy Orchestrator extension of the McAfee Data Loss Prevention software lies in the ability to upload malicious files without limitation. Exploiting this vulnerability could allow a remote attacker to upload malware files...

5.4CVSS6.6AI score0.00697EPSS
Exploits0References3Affected Software1
CNVD
CNVD
added 2020/11/19 12:0 a.m.3 views

McAfee Endpoint Security Cross-Site Scripting Vulnerability

McAfee Endpoint Security ENS is the United States McAfee McAfee company's set of framework for providing intelligent collaboration and advanced threat defense. The framework supports the entire threat defense lifecycle of real-time communications control and actionable threat forensics and so on....

4.8CVSS5.9AI score0.00511EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2019/09/05 12:0 a.m.4 views

The vulnerability of the ePolicy Orchestrator extension of the McAfee Data Loss Prevention Endpoint software allows a perpetrator to execute cross-site scripting attacks.

The vulnerability of the ePolicy Orchestrator extension of the McAfee Data Loss Prevention Endpoint software relates to the failure to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...

6.4CVSS5.2AI score0.00825EPSS
Exploits0References2Affected Software1
CNVD
CNVD
added 2018/06/19 12:0 a.m.3 views

McAfee Threat Intelligence Exchange Server Code Injection Vulnerability

McAfee Threat Intelligence Exchange TIE Server is the United States McAfee McAfee company's set of threat detection and corresponding solutions. The program includes real-time protection, threat detection and endpoint protection. ePolicy Orchestrator ePO extension is one of the security managemen...

9.8CVSS8.1AI score0.01578EPSS
Exploits0References1
OSV
OSV
added 2018/06/13 9:29 p.m.3 views

CVE-2017-3907

Code Injection vulnerability in the ePolicy Orchestrator ePO extension in McAfee Threat Intelligence Exchange TIE Server 2.1.0 and earlier allows remote attackers to execute arbitrary HTML code to be reflected in the response web page via unspecified vector...

9.8CVSS6.1AI score0.01578EPSS
Exploits0References1
CNVD
CNVD
added 2017/05/23 12:0 a.m.2 views

Intel McAfee ePolicy Orchestrator Extension Directory Traversal Vulnerability

Intel McAfee ePolicy Orchestrator ePO is a suite of security management software from Intel Corporation formerly McAfee, Inc. that enables centralized and streamlined management of endpoint, network, and content security and compliance solutions. ePO Extension is one of the extensible security...

7.2CVSS7.3AI score0.02819EPSS
Exploits0References1
CNVD
CNVD
added 2015/02/21 12:0 a.m.2 views

McAfee Data Loss Prevention Endpoint Information Disclosure Vulnerability

McAfee Data Loss Prevention Endpoint is an integrated endpoint data protection solution from McAfee. The solution prevents theft and accidental disclosure of confidential data and provides security policies for file handling and transfer, shared endpoint data flow control and data encryption. An...

4CVSS6.2AI score0.01332EPSS
Exploits0References1
CNVD
CNVD
added 2015/02/21 12:0 a.m.3 views

McAfee Data Loss Prevention Endpoint Cross-Site Scripting Vulnerability

McAfee Data Loss Prevention Endpoint is an integrated endpoint data protection solution from McAfee. The solution prevents theft and accidental disclosure of confidential data and provides security policies for file handling and transfer, shared endpoint data flow control and data encryption. A...

3.5CVSS6AI score0.0108EPSS
Exploits0References1
Rows per page
Query Builder