CVE-2018-6672

MEDIUM

McAfee ePolicy Orchestrator 5.3.0-5.3.3 and 5.9.0-5.9.1 - Authenticated Sensitive Information Exposure

Title source: llm
STIX 2.1

Description

Information disclosure vulnerability in McAfee ePolicy Orchestrator (ePO) 5.3.0 through 5.3.3 and 5.9.0 through 5.9.1 allows authenticated users to view sensitive information in plain text format via unspecified vectors.

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/104485
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1041155

Scores

CVSS v3 5.7
EPSS 0.0120
EPSS Percentile 64.6%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:N

Details

CWE
CWE-200
Status published
Products (1)
mcafee/epolicy_orchestrator 5.3.0 - 5.3.3
Published Jun 15, 2018
Tracked Since Feb 18, 2026