Unrated severityNVD Advisory· Published Nov 12, 2020· Updated Sep 16, 2024
Cross-site Scripting (XSS) in firewall ePO extension of McAfee Endpoint Security (ENS)
CVE-2020-7333
Description
Cross site scripting vulnerability in the firewall ePO extension of McAfee Endpoint Security (ENS) prior to 10.7.0 November 2020 Update allows administrators to inject arbitrary web script or HTML via the configuration wizard.
Affected products
2- Range: <10.7.0 November 2020 Update
- Mcafee, LLC/Endpoint Security for Windowsv5Range: 10.7.x
Patches
Vulnerability mechanics
References
1- kc.mcafee.com/corporate/indexmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.