Page 86 of 604 results (0.006 seconds)

CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0

CVE-2015-4559

https://notcve.org/view.php?id=CVE-2015-4559

Cross-site scripting (XSS) vulnerability in the product deployment feature in the Java core web services in Intel McAfee ePolicy Orchestrator (ePO) before 5.1.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Vulnerabilidad de XSS en la característica del despliegue de productos en los servicios web del núcleo de Java en Intel McAfee ePolicy Orchestrator (ePO) anterior a 5.1.2 permite a atacantes remotos inyectar secuencias de comandos web arbitrarios o HTML a través de vectores no especificados. • http://www.securityfocus.com/bid/91539 http://www.securitytracker.com/id/1032671 https://kc.mcafee.com/corporate/index?page=content&id=SB10121 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 7.2EPSS: 0%CPEs: 2EXPL: 0

CVE-2015-3987

https://notcve.org/view.php?id=CVE-2015-3987

Multiple unquoted Windows search path vulnerabilities in the (1) Client Management and (2) Gateway in McAfee ePO Deep Command 2.1 and 2.2 before HF 1058831 allow local users to gain privileges via unspecified vectors. Múltiples vulnerabilidades de ruta no confiable en la búsqueda no literal de Windows en el (1) Client Management y (2) Gateway en McAfee ePO Deep Command 2.1 y 2.2 anterior a HF 1058831 permite a usuarios locales ganar privilegios mediante vectores desconocidos. • http://www.securityfocus.com/bid/74685 http://www.securitytracker.com/id/1032244 https://kc.mcafee.com/corporate/index?page=content&id=SB10115 • CWE-426: Untrusted Search Path •

CVSS: 4.0EPSS: 0%CPEs: 1EXPL: 0

CVE-2015-3030

https://notcve.org/view.php?id=CVE-2015-3030

The web interface in McAfee Advanced Threat Defense (MATD) before 3.4.4.63 allows remote authenticated users to obtain sensitive configuration information via unspecified vectors. La interfaz web en McAfee Advanced Threat Defense (MATD) anterior a 3.4.4.63 permite a usuarios remotos autenticados obtener información sensible de configuraciones a través de vectores no especificados. • https://kc.mcafee.com/corporate/index?page=content&id=SB10112 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •

CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0

CVE-2015-3028

https://notcve.org/view.php?id=CVE-2015-3028

McAfee Advanced Threat Defense (MATD) before 3.4.4.63 allows remote authenticated users to bypass intended restrictions and change or update configuration settings via crafted parameters. McAfee Advanced Threat Defense (MATD) anterior a 3.4.4.63 permite a usuarios remotos autenticados evadir las restricciones y cambiar o actualizar los ajuste de configuración a través de parámetros manipulados. • https://kc.mcafee.com/corporate/index?page=content&id=SB10112 • CWE-264: Permissions, Privileges, and Access Controls •

CVSS: 4.0EPSS: 0%CPEs: 1EXPL: 0

CVE-2015-3029

https://notcve.org/view.php?id=CVE-2015-3029

The web interface in McAfee Advanced Threat Defense (MATD) before 3.4.4.63 does not properly restrict access, which allows remote authenticated users to obtain sensitive information via unspecified vectors. La interfaz web en McAfee Advanced Threat Defense (MATD) anterior a 3.4.4.63 no restringe correctamente el acceso, lo que permite a usuarios remotos autenticados obtener información sensible a través de vectores no especificados. • https://kc.mcafee.com/corporate/index?page=content&id=SB10112 • CWE-264: Permissions, Privileges, and Access Controls •