Security Advisory

CVE-2021-23888

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-03-26 09:30:21

Last updated 2024-08-03 19:14:09

Assigner trellix

State PUBLISHED

Description

Unvalidated client-side URL redirect vulnerability in McAfee ePolicy Orchestrator (ePO) prior to 5.10 Update 10 could cause an authenticated ePO user to load an untrusted site in an ePO iframe which could steal information from the authenticated user.

← Browse all CVEs View on cve.org ↗