Remote Authentication Vulnerability in McAfee Data Loss Prevention Endpoint
CVE-2015-1618

Currently unrated

Key Information:

Vendor: Mcafee
Status: Data Loss Prevention Endpoint
Vendor: CVE Published:; 17 February 2015

Summary

The ePO extension in McAfee Data Loss Prevention Endpoint prior to version 9.3.400 allows remote authenticated users to exploit a vulnerability through a specially crafted URL, leading to the exposure of sensitive password data. This flaw highlights the importance of securing endpoints against unauthorized access and ensuring that software is kept up to date to mitigate such risks.

References

https://kc.mcafee.com/corporate/index?page=content&id=SB1...

x_refsource_CONFIRM

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Feb 17, 2015