Known Vulnerabilities for Epolicy Orchestrator by Mcafee

Listed below are 10 of the newest known vulnerabilities associated with "Epolicy Orchestrator" by "Mcafee".

These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.

Data on known vulnerable versions is also displayed based on information from known CPEs

Known Vulnerabilities

CVE	Shortened Description	Severity	Publish Date	Last Modified
CVE-2021-31835	Cross-Site Scripting vulnerability in McAfee ePolicy Orchestrator (ePO) prior to 5.10 Update 11 allows ePO administrators to ...	4.8 - MEDIUM	2021-10-22	2023-11-15
CVE-2021-31834	Stored Cross-Site Scripting vulnerability in McAfee ePolicy Orchestrator (ePO) prior to 5.10 Update 11 allows ePO administrat...	5.4 - MEDIUM	2021-10-22	2023-11-15
CVE-2021-30639	A vulnerability in Apache Tomcat allows an attacker to remotely trigger a denial of service. An error introduced as part of a...	7.5 - HIGH	2021-07-12	2023-11-07
CVE-2021-23890	Information leak vulnerability in the Agent Handler of McAfee ePolicy Orchestrator (ePO) prior to 5.10 Update 10 allows an un...	6.5 - MEDIUM	2021-03-26	2023-11-07
CVE-2021-23889	Cross-Site Scripting vulnerability in McAfee ePolicy Orchestrator (ePO) prior to 5.10 Update 10 allows ePO administrators to ...	4.8 - MEDIUM	2021-03-26	2023-11-07
CVE-2021-23888	Unvalidated client-side URL redirect vulnerability in McAfee ePolicy Orchestrator (ePO) prior to 5.10 Update 10 could cause a...	6.3 - MEDIUM	2021-03-26	2023-11-07
CVE-2021-23840	Calls to EVP_CipherUpdate, EVP_EncryptUpdate and EVP_DecryptUpdate may overflow the output length argument in some cases wher...	7.5 - HIGH	2021-02-16	2023-11-07
CVE-2021-3712	ASN.1 strings are represented internally within OpenSSL as an ASN1_STRING structure which contains a buffer holding the strin...	7.4 - HIGH	2021-08-24	2023-11-07
CVE-2021-2432	Vulnerability in the Java SE product of Oracle Java SE (component: JNDI). The supported version that is affected is Java SE: ...	3.7 - LOW	2021-07-21	2022-09-23
CVE-2021-2161	Vulnerability in the Java SE, Java SE Embedded, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libra...	5.9 - MEDIUM	2021-04-22	2023-11-07

Results limited to 10 most recent vulnerabilities

Known Affected Configurations (CPE V2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Application	Mcafee	Epolicy Orchestrator	5.9.1	All	All	All
Application	Mcafee	Epolicy Orchestrator	5.9.0	All	All	All
Application	Mcafee	Epolicy Orchestrator	5.3.3	All	All	All
Application	Mcafee	Epolicy Orchestrator	5.3.2	All	All	All
Application	Mcafee	Epolicy Orchestrator	5.3.1	All	All	All
Application	Mcafee	Epolicy Orchestrator	5.3.0	All	All	All
Application	Mcafee	Epolicy Orchestrator	5.10.9	All	All	All
Application	Mcafee	Epolicy Orchestrator	5.10.0	update_3	All	All
Application	Mcafee	Epolicy Orchestrator	5.10.0	update_9	All	All
Application	Mcafee	Epolicy Orchestrator	5.10.0	update_8	All	All
Application	Mcafee	Epolicy Orchestrator	5.10.0	update_7	All	All
Application	Mcafee	Epolicy Orchestrator	5.10.0	update_6	All	All
Application	Mcafee	Epolicy Orchestrator	5.10.0	update_5	All	All
Application	Mcafee	Epolicy Orchestrator	5.10.0	-	All	All
Application	Mcafee	Epolicy Orchestrator	5.10.0	update_1	All	All
Application	Mcafee	Epolicy Orchestrator	5.10.0	update_2	All	All
Application	Mcafee	Epolicy Orchestrator	5.10.0	update_4	All	All
Application	Mcafee	Epolicy Orchestrator	5.1.3	All	All	All
Application	Mcafee	Epolicy Orchestrator	5.1.2	All	All	All
Application	Mcafee	Epolicy Orchestrator	5.1.1	All	All	All

Results limited to 20 most recent known configurations