Mcafee: >> Epolicy Orchestrator >> 5.9.0 Security Vulnerabilities
A directory traversal vulnerability in the ePO Extension in McAfee ePolicy Orchestrator (ePO) 5.9.0, 5.3.2, and 5.1.3 and earlier allows remote authenticated users to execute a command of their choice via an authenticated ePO session.
CVSS Score
7.2
EPSS Score
0.034
Published
2017-05-18
McAfee ePolicy Orchestrator (ePO) 4.6.1 and earlier allows remote authenticated users to bypass intended access restrictions, and obtain sensitive information from arbitrary reporting panels, via a modified ID value in a console URL.
CVSS Score
4.0
EPSS Score
0.002
Published
2012-08-22
Page 7