Mcafee » Epolicy Orchestrator : Security Vulnerabilities, CVEs, Published In 2013 (Directory traversal)
Directory traversal vulnerability in McAfee ePolicy Orchestrator (ePO) before 4.5.7 and 4.6.x before 4.6.6 allows remote attackers to upload arbitrary files via a crafted request over the Agent-Server communication channel, as demonstrated by writing to the Software/ directory.
Max CVSS
4.3
EPSS Score
0.24%
Published
2013-05-01
Updated
2017-11-16
1 vulnerabilities found