Cross site scripting (XSS) vulnerability in McAfee Data Loss Prevention (DLP) ePO extension before 11.7.100 allows a remote malicious user to highjack an active DLP ePO administrator session by convincing the logged in administrator to click on a carefully crafted link in the case management part of the DLP ePO extension.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mcafee data loss prevention endpoint |