Command Execution Vulnerability in McAfee ePolicy Orchestrator (ePO) Extension

Command Execution Vulnerability in McAfee ePolicy Orchestrator (ePO) Extension

CVE-2017-3980 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:P/A:P

A directory traversal vulnerability in the ePO Extension in McAfee ePolicy Orchestrator (ePO) 5.9.0, 5.3.2, and 5.1.3 and earlier allows remote authenticated users to execute a command of their choice via an authenticated ePO session.

Learn more about our User Device Pen Test.