McAfee ePolicy Orchestrator CVE-2019-3619 Information Disclosure Vulnerability



McAfee ePolicy Orchestrator is prone to an information-disclosure vulnerability.

Attackers can exploit this issue to gain access to sensitive information by sniffing the traffic through a man-in-the-middle attack. Successful exploits will lead to other attacks.
McAfee ePolicy Orchestrator 5.9.0, 5.9.1 and 5.10.0 are vulnerable.

Information

Bugtraq ID: 109066
Class: Design Error
CVE: CVE-2019-3619

Remote: Yes
Local: No
Published: Jul 08 2019 12:00AM
Updated: Jul 08 2019 12:00AM
Credit: The vendor reported this issue.
Vulnerable: McAfee ePolicy Orchestrator 5.10
McAfee ePolicy Orchestrator 5.9.1
McAfee ePolicy Orchestrator 5.9


Not Vulnerable: McAfee ePolicy Orchestrator 5.10 Update 4
McAfee ePolicy Orchestrator 5.9.1 Hotfix 1267793


Exploit




Source: www.securityfocus.com
Related Posts