Mcafee Epolicy Orchestrator version 5.10.0 : Security vulnerabilities, CVEs xss, cross site scripting published in 2021

cpe:2.3:a:mcafee:epolicy_orchestrator:5.10.0:update_2:*:*:*:*:*:*

CVE-2021-31835

Cross-Site Scripting vulnerability in McAfee ePolicy Orchestrator (ePO) prior to 5.10 Update 11 allows ePO administrators to inject arbitrary web script or HTML via a specific parameter where the administrator's entries were not correctly sanitized.

Max CVSS

4.8

EPSS Score

0.05%

Published

2021-10-22

Updated

2023-11-15

CVE-2021-31834

Stored Cross-Site Scripting vulnerability in McAfee ePolicy Orchestrator (ePO) prior to 5.10 Update 11 allows ePO administrators to inject arbitrary web script or HTML via multiple parameters where the administrator's entries were not correctly sanitized.

Max CVSS

5.4

EPSS Score

0.05%

Published

2021-10-22

Updated

2023-11-15

CVE-2021-23889

Cross-Site Scripting vulnerability in McAfee ePolicy Orchestrator (ePO) prior to 5.10 Update 10 allows ePO administrators to inject arbitrary web script or HTML via multiple parameters where the administrator's entries were not correctly sanitized.

Max CVSS

4.8

EPSS Score

0.05%

Published

2021-03-26

Updated

2021-03-30

3 vulnerabilities found

Mcafee » Epolicy Orchestrator » 5.10.0 update_2 : Security Vulnerabilities, CVEs, Published In 2021 (XSS)

CVE-2021-31835

CVE-2021-31834

CVE-2021-23889