Security Advisory

CVE-2015-0921

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2015-01-09 18:00:00

Last updated 2024-08-06 04:26:11

Assigner mitre

State PUBLISHED

Description

XML external entity (XXE) vulnerability in the Server Task Log in McAfee ePolicy Orchestrator (ePO) before 4.6.9 and 5.x before 5.1.2 allows remote authenticated users to read arbitrary files via the conditionXML parameter to the taskLogTable to orionUpdateTableFilter.do.

← Browse all CVEs View on cve.org ↗