Mcafee

Epolicy Orchestrator

86 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
3.1

CVE-2019-2766

  • EPSS 1.45%
  • Veröffentlicht 23.07.2019 23:15:40
  • Zuletzt bearbeitet 21.11.2024 04:41:31

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Networking). Supported versions that are affected are Java SE: 7u221, 8u212, 11.0.3 and 12.0.1; Java SE Embedded: 8u211. Difficult to exploit vulnerability allo...

5.3

CVE-2019-2762

  • EPSS 0.5%
  • Veröffentlicht 23.07.2019 23:15:39
  • Zuletzt bearbeitet 21.11.2024 04:41:30

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Utilities). Supported versions that are affected are Java SE: 7u221, 8u212, 11.0.3 and 12.0.1; Java SE Embedded: 8u211. Easily exploitable vulnerability allows ...

5.1

CVE-2019-2745

  • EPSS 0.06%
  • Veröffentlicht 23.07.2019 23:15:38
  • Zuletzt bearbeitet 21.11.2024 04:41:28

Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Security). Supported versions that are affected are Java SE: 7u221, 8u212 and 11.0.3. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrast...

4.9

CVE-2019-3619

  • EPSS 0.16%
  • Veröffentlicht 03.07.2019 14:15:10
  • Zuletzt bearbeitet 21.11.2024 04:42:15

Information Disclosure vulnerability in the Agent Handler in McAfee ePolicy Orchestrator (ePO) 5.9.x and 5.10.0 prior to 5.10.0 update 4 allows remote unauthenticated attacker to view sensitive information in plain text via sniffing the traffic betwe...

7.5

CVE-2019-2602

  • EPSS 0.27%
  • Veröffentlicht 23.04.2019 19:32:50
  • Zuletzt bearbeitet 21.11.2024 04:41:11

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 7u211, 8u202, 11.0.2 and 12; Java SE Embedded: 8u201. Easily exploitable vulnerability allows unau...

8.8

CVE-2019-3604

  • EPSS 0.17%
  • Veröffentlicht 01.02.2019 15:29:00
  • Zuletzt bearbeitet 21.11.2024 04:42:14

Cross-Site Request Forgery (CSRF) vulnerability in McAfee ePO (legacy) Cloud allows unauthenticated users to perform unintended ePO actions using an authenticated user's session via unspecified vectors.

6.5

CVE-2018-6672

  • EPSS 0.57%
  • Veröffentlicht 15.06.2018 14:29:00
  • Zuletzt bearbeitet 21.11.2024 04:11:05

Information disclosure vulnerability in McAfee ePolicy Orchestrator (ePO) 5.3.0 through 5.3.3 and 5.9.0 through 5.9.1 allows authenticated users to view sensitive information in plain text format via unspecified vectors.

6.5

CVE-2018-6671

  • EPSS 1.05%
  • Veröffentlicht 15.06.2018 14:29:00
  • Zuletzt bearbeitet 21.11.2024 04:11:05

Application Protection Bypass vulnerability in McAfee ePolicy Orchestrator (ePO) 5.3.0 through 5.3.3 and 5.9.0 through 5.9.1 allows remote authenticated users to bypass localhost only access security protection for some ePO features via a specially c...

9.8

CVE-2017-3936

  • EPSS 5.48%
  • Veröffentlicht 13.06.2018 21:29:00
  • Zuletzt bearbeitet 21.11.2024 03:26:21

OS Command Injection vulnerability in McAfee ePolicy Orchestrator (ePO) 5.9.0, 5.3.2, 5.3.1, 5.1.3, 5.1.2, 5.1.1, and 5.1.0 allows attackers to run arbitrary OS commands with limited privileges via not sanitizing the user input data before exporting ...

5.4

CVE-2018-6659

  • EPSS 0.19%
  • Veröffentlicht 02.04.2018 17:29:00
  • Zuletzt bearbeitet 21.11.2024 04:11:04

Reflected Cross-Site Scripting vulnerability in McAfee ePolicy Orchestrator (ePO) 5.3.2, 5.3.1, 5.3.0 and 5.9.0 allows remote authenticated users to exploit an XSS issue via not sanitizing the user input.