CVE-2018-6672

EUVD-2018-18419
Information disclosure vulnerability in McAfee ePolicy Orchestrator (ePO) 5.3.0 through 5.3.3 and 5.9.0 through 5.9.1 allows authenticated users to view sensitive information in plain text format via unspecified vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.7 MEDIUM
NETWORK
HIGH
HIGH
CVSS:3.0/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:N
trellixCNA
5.7 MEDIUM
NETWORK
HIGH
HIGH
CVSS:3.0/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 67%
Affected Products (NVD)
VendorProductVersion
mcafeeepolicy_orchestrator
5.3.0 ≤
𝑥
≤ 5.3.3
mcafeeepolicy_orchestrator
5.9.0 ≤
𝑥
≤ 5.9.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.securityfocus.com/bid/104485
http://www.securitytracker.com/id/1041155
https://kc.mcafee.com/corporate/index?page=content&id=SB10240
http://www.securityfocus.com/bid/104485
http://www.securitytracker.com/id/1041155
https://kc.mcafee.com/corporate/index?page=content&id=SB10240