CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-7300

Improper Authorization vulnerability in McAfee Data Loss Prevention (DLP) ePO extension prior to 11.5.3 allows authenticated remote attackers to change the configuration when logged in with view only privileges via carefully constructed HTTP post messages.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 33.4%

CVSS Severity

CVSS v3 Score 4.6

CVSS v2 Score 4.0

References

Products affected by CVE-2020-7300

Mcafee » Data Loss Prevention » Version: 11.3.0

cpe:2.3:a:mcafee:data_loss_prevention:11.3.0
Mcafee » Data Loss Prevention » Version: 11.3.0.172

cpe:2.3:a:mcafee:data_loss_prevention:11.3.0.172
Mcafee » Data Loss Prevention » Version: 11.3.1

cpe:2.3:a:mcafee:data_loss_prevention:11.3.1
Mcafee » Data Loss Prevention » Version: 11.3.13.1

cpe:2.3:a:mcafee:data_loss_prevention:11.3.13.1
Mcafee » Data Loss Prevention » Version: 11.3.2

cpe:2.3:a:mcafee:data_loss_prevention:11.3.2
Mcafee » Data Loss Prevention » Version: 11.3.3

cpe:2.3:a:mcafee:data_loss_prevention:11.3.3
Mcafee » Data Loss Prevention » Version: 11.3.4

cpe:2.3:a:mcafee:data_loss_prevention:11.3.4
Mcafee » Data Loss Prevention » Version: 11.4.0

cpe:2.3:a:mcafee:data_loss_prevention:11.4.0
Mcafee » Data Loss Prevention » Version: 11.4.0.17

cpe:2.3:a:mcafee:data_loss_prevention:11.4.0.17
Mcafee » Data Loss Prevention » Version: 11.4.100

cpe:2.3:a:mcafee:data_loss_prevention:11.4.100
Mcafee » Data Loss Prevention » Version: 11.5.0

cpe:2.3:a:mcafee:data_loss_prevention:11.5.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-7300

Products

Pricing

Contact Us