McAfee ePolicy Orchestrator Multiple Vulnerabilities
Last Update Date:
16 Oct 2020 10:56
Release Date:
16 Oct 2020
4826
Views
RISK: Medium Risk
TYPE: Security software and application - Security Software & Appliance
Multiple vulnerabilities were identified in McAfee ePolicy Orchestrator, a remote attacker could exploit some of these vulnerabilities trigger denial of service condition, remote code execution, cross-site scripting and bypass security restriction on the targeted system.
Impact
- Cross-Site Scripting
- Denial of Service
- Remote Code Execution
- Security Restriction Bypass
System / Technologies affected
- Version ePO 5.9.x
- Version ePO 5.10.0 prior to ePO 5.10.0 Update 9
Solutions
Before installation of the software, please visit the vendor web-site for more details.
- Apply fixes issued by the vendor:
ePO 5.10.0 Update 9
Vulnerability Identifier
- CVE-2020-2754
- CVE-2020-2755
- CVE-2020-2756
- CVE-2020-2757
- CVE-2020-2764
- CVE-2020-2773
- CVE-2020-7317
- CVE-2020-7318
- CVE-2020-9484
- CVE-2020-13935
- CVE-2020-14573
- CVE-2020-14578
- CVE-2020-14579
- CVE-2020-14581
- CVE-2020-14621
Source
Related Link
Share with