exploitDog

GHSA-hr73-3j7j-8v7h

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 4.8

Описание

Cross site scripting vulnerability in the firewall ePO extension of McAfee Endpoint Security (ENS) prior to 10.7.0 November 2020 Update allows administrators to inject arbitrary web script or HTML via the configuration wizard.

Cross site scripting vulnerability in the firewall ePO extension of McAfee Endpoint Security (ENS) prior to 10.7.0 November 2020 Update allows administrators to inject arbitrary web script or HTML via the configuration wizard.

Ссылки

EPSS

Процентиль: 57%

0.00351

Низкий

4.8 Medium

CVSS3

CVE ID

Дефекты

CWE-79

Связанные уязвимости

CVE-2020-7333

CVSS3: 4.8

nvd

около 5 лет назад

Cross site scripting vulnerability in the firewall ePO extension of McAfee Endpoint Security (ENS) prior to 10.7.0 November 2020 Update allows administrators to inject arbitrary web script or HTML via the configuration wizard.

EPSS

Процентиль: 57%

0.00351

Низкий

4.8 Medium

CVSS3

CVE ID

Дефекты

CWE-79