McAfee ePolicy Orchestrator (ePO) prior to 4.6.9 and 5.x prior to 5.1.2 uses the same secret key across different customers' installations, which allows malicious users to obtain the administrator password by leveraging knowledge of the encrypted password.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mcafee epolicy orchestrator 5.1.1 |
||
mcafee epolicy orchestrator |
||
mcafee epolicy orchestrator 5.0.0 |
||
mcafee epolicy orchestrator 5.0.1 |
||
mcafee epolicy orchestrator 5.1.0 |