Cross Site Scripting (XSS) in IMG Tags in the ePO extension in McAfee Data Loss Prevention Endpoint (DLP Endpoint) 10.0.x allows authenticated users to inject arbitrary web script or HTML via injecting malicious JavaScript into a user's browsing session.
Metrics
Affected Vendors & Products
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
No history.

Status: PUBLISHED
Assigner: intel
Published:
Updated: 2024-08-05T14:39:41.517Z
Reserved: 2016-12-26T00:00:00
Link: CVE-2017-3948

No data.

Status : Deferred
Published: 2017-06-23T13:29:00.160
Modified: 2025-04-20T01:37:25.860
Link: CVE-2017-3948

No data.

No data.