← back
CVE-2017-3907

McAfee Threat Intelligence Exchange (TIE) Server - Code Injection vulnerability

CVSS 5.4 MEDIUMEPSS 1.6%
Code Injection vulnerability in the ePolicy Orchestrator (ePO) extension in McAfee Threat Intelligence Exchange (TIE) Server 2.1.0 and earlier allows remote attackers to execute arbitrary HTML code to be reflected in the response web page via unspecified vector.
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:L
Affected products
McAfee · Threat Intelligence Exchange (TIE) Server

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://kc.mcafee.com/corporate/index?page=content&id=SB10207