VYPR
Unrated severityNVD Advisory· Published Mar 23, 2022· Updated Aug 2, 2024

ePO blind SQL Injection vulnerability

CVE-2022-0842

Description

A blind SQL injection vulnerability in McAfee Enterprise ePolicy Orchestrator (ePO) prior to 5.10 Update 13 allows a remote authenticated attacker to potentially obtain information from the ePO database. The data obtained is dependent on the privileges the attacker has and to obtain sensitive data the attacker would require administrator privileges.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.