11 matches found
CVE-2023-5607
An improper limitation of a path name to a restricted directory path traversal vulnerability in the TACC ePO extension, for on-premises ePO servers, prior to version 8.4.0 could lead to an authorised administrator attacker executing arbitrary code through uploading a specially crafted GTI...
The vulnerability of the ePolicy Orchestrator extension of the McAfee Data Loss protection software allows a hacker to execute arbitrary SQL code.
The vulnerability of the ePolicy Orchestrator extension of the McAfee Data Loss Prevention software lies in the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows an attacker to execute arbitrary SQL code remotely, using the user management section...
McAfee Data Loss Prevention 跨站脚本漏洞
Mcafee McAfee Data Loss Prevention DLP is a data loss prevention suite from McAfee, Inc. that includes components such as McAfee DLP Monitor, McAfee DLP Endpoint, and provides event management and reporting, synchronization of local and cloud DLP policies, and more. A cross-site scripting...
The vulnerability of the ePolicy Orchestrator extension of the McAfee Data Loss Prevention software allows a hacker to upload malicious files.
The vulnerability of the ePolicy Orchestrator extension of the McAfee Data Loss Prevention software lies in the ability to upload malicious files without limitation. Exploiting this vulnerability could allow a remote attacker to upload malware files...
McAfee Endpoint Security Cross-Site Scripting Vulnerability
McAfee Endpoint Security ENS is the United States McAfee McAfee company's set of framework for providing intelligent collaboration and advanced threat defense. The framework supports the entire threat defense lifecycle of real-time communications control and actionable threat forensics and so on....
The vulnerability of the ePolicy Orchestrator extension of the McAfee Data Loss Prevention Endpoint software allows a perpetrator to execute cross-site scripting attacks.
The vulnerability of the ePolicy Orchestrator extension of the McAfee Data Loss Prevention Endpoint software relates to the failure to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...
McAfee Threat Intelligence Exchange Server Code Injection Vulnerability
McAfee Threat Intelligence Exchange TIE Server is the United States McAfee McAfee company's set of threat detection and corresponding solutions. The program includes real-time protection, threat detection and endpoint protection. ePolicy Orchestrator ePO extension is one of the security managemen...
CVE-2017-3907
Code Injection vulnerability in the ePolicy Orchestrator ePO extension in McAfee Threat Intelligence Exchange TIE Server 2.1.0 and earlier allows remote attackers to execute arbitrary HTML code to be reflected in the response web page via unspecified vector...
Intel McAfee ePolicy Orchestrator Extension Directory Traversal Vulnerability
Intel McAfee ePolicy Orchestrator ePO is a suite of security management software from Intel Corporation formerly McAfee, Inc. that enables centralized and streamlined management of endpoint, network, and content security and compliance solutions. ePO Extension is one of the extensible security...
McAfee Data Loss Prevention Endpoint Information Disclosure Vulnerability
McAfee Data Loss Prevention Endpoint is an integrated endpoint data protection solution from McAfee. The solution prevents theft and accidental disclosure of confidential data and provides security policies for file handling and transfer, shared endpoint data flow control and data encryption. An...
McAfee Data Loss Prevention Endpoint Cross-Site Scripting Vulnerability
McAfee Data Loss Prevention Endpoint is an integrated endpoint data protection solution from McAfee. The solution prevents theft and accidental disclosure of confidential data and provides security policies for file handling and transfer, shared endpoint data flow control and data encryption. A...