External entity attack vulnerability in the ePO extension in McAfee MVISION Endpoint prior to 20.11 allows remote attackers to gain control of a resource or trigger arbitrary code execution via improper input validation of an HTTP request, where the content for the attack has been loaded into ePO by an ePO administrator.
Metrics
Affected Vendors & Products
References
History
Tue, 17 Sep 2024 03:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Title | Server-Side Request Forgery (SSRF) in MVISION Endpoint ePO extension | Server-Side Request Forgery (SSRF) in MVISION Endpoint ePO extension |
MITRE
Status: PUBLISHED
Assigner: trellix
Published: 2020-11-11T09:10:13.230347Z
Updated: 2024-09-17T03:08:02.941Z
Reserved: 2020-01-21T00:00:00
Link: CVE-2020-7328
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2020-11-11T09:15:11.547
Modified: 2023-11-16T14:12:09.180
Link: CVE-2020-7328
Redhat
No data.