CVE-2021-23888
Unvalidated client-side URL redirect vulnerability in McAfee ePolicy Orchestrator (ePO) prior to 5.10 Update 10 could cause an authenticated ePO user to load an untrusted site in an ePO iframe which could steal information from the authenticated user.
| Software | From | Fixed in |
|---|---|---|
| mcafee / epolicy_orchestrator | 5.10.0-update_1 | 5.10.0-update_1.x |
| mcafee / epolicy_orchestrator | 5.10.0-update_2 | 5.10.0-update_2.x |
| mcafee / epolicy_orchestrator | 5.10.0-update_3 | 5.10.0-update_3.x |
| mcafee / epolicy_orchestrator | 5.10.0-update_4 | 5.10.0-update_4.x |
| mcafee / epolicy_orchestrator | 5.10.0-update_5 | 5.10.0-update_5.x |
| mcafee / epolicy_orchestrator | 5.10.0-update_6 | 5.10.0-update_6.x |
| mcafee / epolicy_orchestrator | 5.10.0 | 5.10.0.x |
| mcafee / epolicy_orchestrator | - | 5.10.0 |
| mcafee / epolicy_orchestrator | 5.10.0-update_7 | 5.10.0-update_7.x |
| mcafee / epolicy_orchestrator | 5.10.0-update_8 | 5.10.0-update_8.x |
| mcafee / epolicy_orchestrator | 5.10.0-update_9 | 5.10.0-update_9.x |
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime