CVE-2018-6659

SB10228 ePO Reflected Cross-Site Scripting vulnerability

CVSS 3.7 LOWEPSS 1.0%

Reflected Cross-Site Scripting vulnerability in McAfee ePolicy Orchestrator (ePO) 5.3.2, 5.3.1, 5.3.0 and 5.9.0 allows remote authenticated users to exploit an XSS issue via not sanitizing the user input.

CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:L/I:N/A:L

Affected products

McAfee · ePolicy Orchestrator (ePO)

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://kc.mcafee.com/corporate/index?page=content&id=SB10228 http://www.securityfocus.com/bid/103392 http://www.securitytracker.com/id/1040884