Data Loss Prevention Endpoint ePO Extension Vulnerability in McAfee
CVE-2015-2758

Currently unrated

Key Information:

Vendor: Mcafee
Status: Data Loss Prevention Endpoint
Vendor: CVE Published:; 27 March 2015

Summary

The ePO extension in McAfee Data Loss Prevention Endpoint versions prior to 9.3 Patch 4 Hotfix 16 (9.3.416.4) contains a vulnerability that allows remote authenticated users to exploit the system. By crafting a specific URL, these users can gain unauthorized access to sensitive information and potentially modify the database, leading to other unspecified impacts on the system's integrity and security.

References

https://kc.mcafee.com/corporate/index?page=content&id=SB1...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/73397

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Mar 27, 2015
Vulnerability Reserved
Mar 27, 2015