CVE-2015-2758
- EPSS 0.39%
- Veröffentlicht 27.03.2015 14:59:08
- Zuletzt bearbeitet 12.04.2025 10:46:40
The ePO extension in McAfee Data Loss Prevention Endpoint (DLPe) before 9.3 Patch 4 Hotfix 16 (9.3.416.4) allows remote authenticated users to obtain sensitive information, modify the database, or possibly have other unspecified impact via a crafted ...
- EPSS 0.4%
- Veröffentlicht 27.03.2015 14:59:07
- Zuletzt bearbeitet 12.04.2025 10:46:40
The ePO extension in McAfee Data Loss Prevention Endpoint (DLPe) before 9.3 Patch 4 Hotfix 16 (9.3.416.4) allows remote authenticated users to cause a denial of service (database lock or license corruption) via unspecified vectors.
- EPSS 0.18%
- Veröffentlicht 17.02.2015 15:59:09
- Zuletzt bearbeitet 12.04.2025 10:46:40
The ePO extension in McAfee Data Loss Prevention Endpoint (DLPe) before 9.3.400 allows remote authenticated users to obtain sensitive password information via a crafted URL.
CVE-2015-1617
- EPSS 0.19%
- Veröffentlicht 17.02.2015 15:59:08
- Zuletzt bearbeitet 12.04.2025 10:46:40
Cross-site scripting (XSS) vulnerability in the ePO extension in McAfee Data Loss Prevention Endpoint (DLPe) before 9.3.400 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
CVE-2015-1616
- EPSS 0.31%
- Veröffentlicht 17.02.2015 15:59:07
- Zuletzt bearbeitet 12.04.2025 10:46:40
SQL injection vulnerability in the ePO extension in McAfee Data Loss Prevention Endpoint (DLPe) before 9.3.400 allows remote authenticated ePO users to execute arbitrary SQL commands via unspecified vectors.
CVE-2015-1305
- EPSS 0.51%
- Veröffentlicht 06.02.2015 15:59:12
- Zuletzt bearbeitet 12.04.2025 10:46:40
McAfee Data Loss Prevention Endpoint (DLPe) before 9.3.400 allows local users to write to arbitrary memory locations, and consequently gain privileges, via a crafted (1) 0x00224014 or (2) 0x0022c018 IOCTL call.