QID 376557

Date Published: 2022-05-05

QID 376557: McAfee ePolicy Orchestrator Access Bypass and Aensitive Information Leak Vulnerabilities (SB10240)

McAfee ePolicy Orchestrator (ePO) software centralizes and streamlines management of endpoint,
network, content security and compliance solutions.

Is affected by CVE-2018-6671 and CVE-2018-6672

Affected Products:
From ePO 5.3.0,5.3.1,5.3.2,5.3.3 Prior to 5.3.3 with Hotfix EPO5xHF1229850 applied.
From ePO 5.9.0,5.9.1 Prior to 5.9.1 with Hotfix EPO5xHF1229850 applied.

QID Detection Logic:
This checks for vulnerable versions of ePoSign and check build number for hotfix and version of jre for update.

Successful exploitation allows remote authenticated users to bypass localhost only access security protection and access sensitive information.

CVSS V3 rated as High - 6.5 severity.

CVSS V2 rated as Medium - 4 severity.

Solution

Customers are advised to review SB10240 for more information.

Vendor References

SB10240 - kc.mcafee.com/corporate/index?page=content&id=SB10240

CVEs related to QID 376557

CVE-2018-6671 | CVE-2018-6672 |

Software Advisories

Advisory ID	Software	Component	Link
SB10240			kc.mcafee.com/corporate/index?page=content&id=SB10240

By selecting these links, you may be leaving CVEreport webspace. We have provided these links to other websites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other websites that are more appropriate for your purpose. CVEreport does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, CVEreport does not endorse any commercial products that may be mentioned on these sites. Please address comments about any linked pages to [email protected].