CVE-2020-7300

Improper Authorization vulnerability in McAfee Data Loss Prevention DLP ePO extension prior to 11.5.3 allows authenticated remote attackers to change the configuration when logged in with view only privileges via carefully constructed HTTP post messages...

McAfee Data Loss Prevention ePO extension Multiple Vulnerabilities (SB10326)

The remote host is running a version of McAfee ePolicy Orchestrator that is affected by multiple vulnerabilities, including the following: - Unrestricted Upload of File with Dangerous Type in McAfee Data Loss Prevention DLP ePO extension prior to 11.5.3 allows authenticated attackers to upload...

CVE-2020-7300

Improper Authorization vulnerability in McAfee Data Loss Prevention DLP ePO extension prior to 11.5.3 allows authenticated remote attackers to change the configuration when logged in with view only privileges via carefully constructed HTTP post messages...

CVE-2020-7300

CVE-2020-7300 affects McAfee Data Loss Prevention (DLP) ePO extension prior to 11.5.3. An improper authorization flaw lets authenticated users with view-only privileges remotely alter configuration via carefully crafted HTTP POST messages. Impact is limited to configuration changes; exploitation ...