SQL injection vulnerability in McAfee Data Loss Prevention (DLP) ePO extension prior to 11.7.100 allows a remote attacker logged into ePO as an administrator to inject arbitrary SQL into the ePO database through the user management section of the DLP ePO extension.
References
Link | Resource |
---|---|
https://kc.mcafee.com/corporate/index?page=content&id=SB10371 | Broken Link |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: trellix
Published: 2021-11-01T19:25:13
Updated: 2021-11-01T19:25:13
Reserved: 2021-04-27T00:00:00
Link: CVE-2021-31849
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-11-01T20:15:07.593
Modified: 2023-11-15T19:05:44.010
Link: CVE-2021-31849
JSON object: View
Redhat Information
No data.
CWE