Unsanitized User Input Leads to Reflected Cross-Site Scripting in McAfee ePolicy Orchestrator (ePO)

Unsanitized User Input Leads to Reflected Cross-Site Scripting in McAfee ePolicy Orchestrator (ePO)

CVE-2018-6659 · LOW Severity

AV:N/AC:M/AU:S/C:N/I:P/A:N

Reflected Cross-Site Scripting vulnerability in McAfee ePolicy Orchestrator (ePO) 5.3.2, 5.3.1, 5.3.0 and 5.9.0 allows remote authenticated users to exploit an XSS issue via not sanitizing the user input.

Learn more about our User Device Pen Test.