Unrated severityNVD Advisory· Published Aug 13, 2020· Updated Aug 4, 2024
DLP ePO extension - Cross-site request forgery
CVE-2020-7304
Description
Cross site request forgery vulnerability in McAfee Data Loss Prevention (DLP) ePO extension prior to 11.5.3 allows authenticated remote attacker to embed a CRSF script via adding a new label.
Affected products
2- Range: <11.5.3
- McAfee/DLP ePO extensionv5Range: 11.3
Patches
Vulnerability mechanics
References
1- kc.mcafee.com/corporate/indexmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.