Unrated severityNVD Advisory· Published Oct 22, 2021· Updated Aug 3, 2024
McAfee ePO Cross-Site Scripting vulnerability
CVE-2021-31835
Description
Cross-Site Scripting vulnerability in McAfee ePolicy Orchestrator (ePO) prior to 5.10 Update 11 allows ePO administrators to inject arbitrary web script or HTML via a specific parameter where the administrator's entries were not correctly sanitized.
Affected products
2< 5.10 Update 11+ 1 more
- (no CPE)range: < 5.10 Update 11
- (no CPE)range: unspecified
Patches
Vulnerability mechanics
References
1- kc.mcafee.com/corporate/indexmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.