Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple cross-site request forgery (CSRF) vulnerabilities in the ePO extension in McAfee Data Loss Prevention Endpoint (DLPe) before 9.3 Patch 4 Hotfix 16 (9.3.416.4) allow remote attackers to hijack the authentication of users for requests that (1) obtain sensitive information or (2) modify the database via unspecified vectors.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
McAfee Data Loss Prevention Endpoint ePO扩展跨站请求伪造漏洞
Vulnerability Description
McAfee Data Loss Prevention Endpoint(DLPe)是美国迈克菲(McAfee)公司的一套集成式终端数据保护解决方案,它能够防止机密数据被盗和意外泄露,并提供针对文件处理和传输的安全策略、共享终端数据流控制和数据加密等功能。ePO(ePolicy Orchestrator)是其中的一个可扩展的安全管理软件。 McAfee DLPe 9.3 Patch 4 Hotfix 16 (9.3.416.4)之前版本的ePO扩展中存在跨站请求伪造漏洞。远程攻击者可利用该漏洞获取敏感信息
CVSS Information
N/A
Vulnerability Type
N/A