CVE-2019-3604


02/01/2019

CVE-2019-3604

Cross-Site Request Forgery (CSRF) vulnerability in McAfee ePO (legacy) Cloud allows unauthenticated users to perform unintended ePO actions using an authenticated user’s session via unspecified vectors.

Attack vector: 
Network

Product: 
mcafee: epolicy_orchestrator

References: 
https://kc.mcafee.com/corporate/index?page=content&id=SB10268

Severity: 
Medium

CVSS Score: 
6.8

CVSS Vector: 
(AV:N/AC:M/Au:N/C:P/I:P/A:P)



Don't forget to share

You may also like...

Leave a Reply

Your email address will not be published. Required fields are marked *