84 matches found
CVE-2021-31848
Cross site scripting XSS vulnerability in McAfee Data Loss Prevention DLP ePO extension prior to 11.7.100 allows a remote attacker to highjack an active DLP ePO administrator session by convincing the logged in administrator to click on a carefully crafted link in the case management part of the...
CVE-2021-31849
SQL injection vulnerability in McAfee Data Loss Prevention DLP ePO extension prior to 11.7.100 allows a remote attacker logged into ePO as an administrator to inject arbitrary SQL into the ePO database through the user management section of the DLP ePO extension...
EUVD-2021-18723
Malware in sbrugna...
EUVD-2015-2848
Malware in sbrugna...
EUVD-2021-18724
Malware in sbrugna...
EUVD-2020-28430
Malware in sbrugna...
EUVD-2017-13065
Malware in sbrugna...
EUVD-2020-28427
Malware in sbrugna...
EUVD-2021-10807
Malware in sbrugna...
EUVD-2020-28455
Malware in sbrugna...
EUVD-2015-2847
Malware in sbrugna...
EUVD-2021-33976
Malicious code in bioql PyPI...
EUVD-2023-57900
Malicious code in bioql PyPI...
CVE-2023-5607
An improper limitation of a path name to a restricted directory path traversal vulnerability in the TACC ePO extension, for on-premises ePO servers, prior to version 8.4.0 could lead to an authorised administrator attacker executing arbitrary code through uploading a specially crafted GTI...
CVE-2023-5607
An improper limitation of a path name to a restricted directory path traversal vulnerability in the TACC ePO extension, for on-premises ePO servers, prior to version 8.4.0 could lead to an authorised administrator attacker executing arbitrary code through uploading a specially crafted GTI...
McAfee Data Loss Prevention ePO extension Blind SQLi (SB10376)
The remote host is running a version of McAfee ePolicy Orchestrator that is affected by a blind SQL injection vulnerability that allows a remote authenticated attacker to inject unfiltered SQL into the DLP part of the ePO database. This could lead to remote code execution on the ePO server with...
CVE-2021-4088
SQL injection vulnerability in Data Loss Protection DLP ePO extension 11.8.x prior to 11.8.100, 11.7.x prior to 11.7.101, and 11.6.401 allows a remote authenticated attacker to inject unfiltered SQL into the DLP part of the ePO database. This could lead to remote code execution on the ePO server...
Sql injection
SQL injection vulnerability in Data Loss Protection DLP ePO extension 11.8.x prior to 11.8.100, 11.7.x prior to 11.7.101, and 11.6.401 allows a remote authenticated attacker to inject unfiltered SQL into the DLP part of the ePO database. This could lead to remote code execution on the ePO server...
CVE-2021-4088
CVE-2021-4088 describes a SQL injection in McAfee Data Loss Prevention (DLP) ePO extension. The vulnerability affects DLP ePO extension versions 11.6.401 and 11.7.x up to 11.7.100, and 11.8.x prior to 11.8.100, allowing a remote authenticated attacker to inject unfiltered SQL into the DLP portion...
CVE-2021-31849
SQL injection vulnerability in McAfee Data Loss Prevention DLP ePO extension prior to 11.7.100 allows a remote attacker logged into ePO as an administrator to inject arbitrary SQL into the ePO database through the user management section of the DLP ePO extension...