Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mcafee epolicy orchestrator 5.1.1 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2017-3936
OS Command Injection vulnerability in McAfee ePolicy Orchestrator (ePO) 5.9.0, 5.3.2, 5.3.1, 5.1.3, 5.1.2, 5.1.1, and 5.1.0 allows malicious users to run arbitrary OS commands with limited privileges via not sanitizing the user input data before exporting it into a CSV format out...
Mcafee Epolicy Orchestrator 5.1.0
Mcafee Epolicy Orchestrator 5.1.3
Mcafee Epolicy Orchestrator 5.1.1
Mcafee Epolicy Orchestrator 5.1.2
Mcafee Epolicy Orchestrator 5.3.1
Mcafee Epolicy Orchestrator 5.3.2
Mcafee Epolicy Orchestrator 5.9.0
5.4
CVSSv3
CVE-2017-3902
Cross-site scripting (XSS) vulnerability in the Web user interface (UI) in Intel Security ePO 5.1.3, 5.1.2, 5.1.1, and 5.1.0 allows authenticated users to inject malicious Java scripts via bypassing input validation.
Mcafee Epolicy Orchestrator 5.1.0
Mcafee Epolicy Orchestrator 5.1.2
Mcafee Epolicy Orchestrator 5.1.1
Mcafee Epolicy Orchestrator 5.1.3
NA
CVE-2015-2859
Intel McAfee ePolicy Orchestrator (ePO) 4.x up to and including 4.6.9 and 5.x up to and including 5.1.2 does not validate server names and Certification Authority names in X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and obt...
Mcafee Epolicy Orchestrator 4.5.6
Mcafee Epolicy Orchestrator 4.5.7
Mcafee Epolicy Orchestrator 4.6.6
Mcafee Epolicy Orchestrator 4.6.7
Mcafee Epolicy Orchestrator 5.1.2
Mcafee Epolicy Orchestrator 4.0
Mcafee Epolicy Orchestrator 4.5.0
Mcafee Epolicy Orchestrator 4.6.2
Mcafee Epolicy Orchestrator 4.6.3
Mcafee Epolicy Orchestrator 5.0.0
Mcafee Epolicy Orchestrator 5.0.1
Mcafee Epolicy Orchestrator 4.5.3
Mcafee Epolicy Orchestrator 4.5.4
Mcafee Epolicy Orchestrator 4.5.5
Mcafee Epolicy Orchestrator 4.6.4
Mcafee Epolicy Orchestrator 4.6.5
Mcafee Epolicy Orchestrator 5.1.0
Mcafee Epolicy Orchestrator 5.1.1
Mcafee Epolicy Orchestrator 4.6.0
Mcafee Epolicy Orchestrator 4.6.1
Mcafee Epolicy Orchestrator 4.6.8
Mcafee Epolicy Orchestrator 4.6.9
NA
CVE-2015-0921
XML external entity (XXE) vulnerability in the Server Task Log in McAfee ePolicy Orchestrator (ePO) prior to 4.6.9 and 5.x prior to 5.1.2 allows remote authenticated users to read arbitrary files via the conditionXML parameter to the taskLogTable to orionUpdateTableFilter.do.
Mcafee Epolicy Orchestrator
Mcafee Epolicy Orchestrator 5.0.0
Mcafee Epolicy Orchestrator 5.0.1
Mcafee Epolicy Orchestrator 5.1.0
Mcafee Epolicy Orchestrator 5.1.1
NA
CVE-2015-0922
McAfee ePolicy Orchestrator (ePO) prior to 4.6.9 and 5.x prior to 5.1.2 uses the same secret key across different customers' installations, which allows malicious users to obtain the administrator password by leveraging knowledge of the encrypted password.
Mcafee Epolicy Orchestrator 5.1.1
Mcafee Epolicy Orchestrator
Mcafee Epolicy Orchestrator 5.0.0
Mcafee Epolicy Orchestrator 5.0.1
Mcafee Epolicy Orchestrator 5.1.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started