Unrated severityNVD Advisory· Published Feb 1, 2019· Updated Aug 4, 2024
ePolicy Orchestrator Cloud update fixes multiple Cross-Site Request Forgery vulnerabilities
CVE-2019-3604
Description
Cross-Site Request Forgery (CSRF) vulnerability in McAfee ePO (legacy) Cloud allows unauthenticated users to perform unintended ePO actions using an authenticated user's session via unspecified vectors.
Affected products
2- McAfee, LLC/ePolicy Orchestrator Cloudv5Range: unspecified
Patches
Vulnerability mechanics
References
2- www.securityfocus.com/bid/106830mitrevdb-entryx_refsource_BID
- kc.mcafee.com/corporate/indexmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.