2 matches found
McAfee ePolicy Orchestrator Multiple Vulnerabilities (SB10352)
The instance of McAfee ePolicy Orchestrator installed on the remote host is potentially affected by the following vulnerabilities: - An unvalidated client-side URL redirect vulnerability exists in McAfee ePolicy Orchestrator ePO. An unauthenticated, remote attacker could exploit this to cause an...
CVE-2021-23889
CVE-2021-23889 affects McAfee ePolicy Orchestrator (ePO) prior to 5.10 Update 10. The vulnerability is a Cross-Site Scripting (XSS) issue where administrator entries are not properly sanitized, allowing injected web script or HTML via multiple parameters. Exploitation would involve a malicious in...