Mcafee

Epolicy Orchestrator

86 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
3.1

CVE-2019-2766

  • EPSS 1.45%
  • Published 23.07.2019 23:15:40
  • Last modified 21.11.2024 04:41:31

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Networking). Supported versions that are affected are Java SE: 7u221, 8u212, 11.0.3 and 12.0.1; Java SE Embedded: 8u211. Difficult to exploit vulnerability allo...

5.3

CVE-2019-2762

  • EPSS 0.5%
  • Published 23.07.2019 23:15:39
  • Last modified 21.11.2024 04:41:30

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Utilities). Supported versions that are affected are Java SE: 7u221, 8u212, 11.0.3 and 12.0.1; Java SE Embedded: 8u211. Easily exploitable vulnerability allows ...

5.1

CVE-2019-2745

  • EPSS 0.06%
  • Published 23.07.2019 23:15:38
  • Last modified 21.11.2024 04:41:28

Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Security). Supported versions that are affected are Java SE: 7u221, 8u212 and 11.0.3. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrast...

4.9

CVE-2019-3619

  • EPSS 0.16%
  • Published 03.07.2019 14:15:10
  • Last modified 21.11.2024 04:42:15

Information Disclosure vulnerability in the Agent Handler in McAfee ePolicy Orchestrator (ePO) 5.9.x and 5.10.0 prior to 5.10.0 update 4 allows remote unauthenticated attacker to view sensitive information in plain text via sniffing the traffic betwe...

7.5

CVE-2019-2602

  • EPSS 0.27%
  • Published 23.04.2019 19:32:50
  • Last modified 21.11.2024 04:41:11

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 7u211, 8u202, 11.0.2 and 12; Java SE Embedded: 8u201. Easily exploitable vulnerability allows unau...

8.8

CVE-2019-3604

  • EPSS 0.17%
  • Published 01.02.2019 15:29:00
  • Last modified 21.11.2024 04:42:14

Cross-Site Request Forgery (CSRF) vulnerability in McAfee ePO (legacy) Cloud allows unauthenticated users to perform unintended ePO actions using an authenticated user's session via unspecified vectors.

6.5

CVE-2018-6672

  • EPSS 0.57%
  • Published 15.06.2018 14:29:00
  • Last modified 21.11.2024 04:11:05

Information disclosure vulnerability in McAfee ePolicy Orchestrator (ePO) 5.3.0 through 5.3.3 and 5.9.0 through 5.9.1 allows authenticated users to view sensitive information in plain text format via unspecified vectors.

6.5

CVE-2018-6671

  • EPSS 1.05%
  • Published 15.06.2018 14:29:00
  • Last modified 21.11.2024 04:11:05

Application Protection Bypass vulnerability in McAfee ePolicy Orchestrator (ePO) 5.3.0 through 5.3.3 and 5.9.0 through 5.9.1 allows remote authenticated users to bypass localhost only access security protection for some ePO features via a specially c...

9.8

CVE-2017-3936

  • EPSS 5.48%
  • Published 13.06.2018 21:29:00
  • Last modified 21.11.2024 03:26:21

OS Command Injection vulnerability in McAfee ePolicy Orchestrator (ePO) 5.9.0, 5.3.2, 5.3.1, 5.1.3, 5.1.2, 5.1.1, and 5.1.0 allows attackers to run arbitrary OS commands with limited privileges via not sanitizing the user input data before exporting ...

5.4

CVE-2018-6659

  • EPSS 0.19%
  • Published 02.04.2018 17:29:00
  • Last modified 21.11.2024 04:11:04

Reflected Cross-Site Scripting vulnerability in McAfee ePolicy Orchestrator (ePO) 5.3.2, 5.3.1, 5.3.0 and 5.9.0 allows remote authenticated users to exploit an XSS issue via not sanitizing the user input.