Security Advisory

CVE-2022-0861

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-03-23 14:25:19

Last updated 2024-08-02 23:40:04

Assigner trellix

State PUBLISHED

Description

A XML Extended entity vulnerability in McAfee Enterprise ePolicy Orchestrator (ePO) prior to 5.10 Update 13 allows a remote administrator attacker to upload a malicious XML file through the extension import functionality. The impact is limited to some access to confidential information and some ability to alter data.

← Browse all CVEs View on cve.org ↗