Epolicy Orchestrator Security Vulnerabilities and Issues — Epolicy Orchestrator CVE List

Lucene search

McafeeEpolicy Orchestrator

3 matches found

CVE•added 2017/03/14 10:59 p.m.•49 views

CVE-2016-8027

SQL injection vulnerability in core services in Intel Security McAfee ePolicy Orchestrator (ePO) 5.3.2 and earlier and 5.1.3 and earlier allows attackers to alter a SQL query, which can result in disclosure of information within the database or impersonation of an agent without authentication via a...

10CVSS9.4AI score0.17207EPSS

Web

CVE•added 2017/02/13 4:59 p.m.•48 views

CVE-2017-3902

Cross-site scripting (XSS) vulnerability in the Web user interface (UI) in Intel Security ePO 5.1.3, 5.1.2, 5.1.1, and 5.1.0 allows authenticated users to inject malicious Java scripts via bypassing input validation.

5.4CVSS5.2AI score0.00341EPSS

CVE•added 2017/05/18 7:29 p.m.•47 views

CVE-2017-3980

A directory traversal vulnerability in the ePO Extension in McAfee ePolicy Orchestrator (ePO) 5.9.0, 5.3.2, and 5.1.3 and earlier allows remote authenticated users to execute a command of their choice via an authenticated ePO session.

7.2CVSS6.9AI score0.03447EPSS