McAfee Data Loss Protection ePO extension SQL injection | CVE-2021-4088

January 26, 2022

NAME

McAfee Data Loss Protection ePO extension SQL injection

  • Platforms Affected:
    McAfee Data Loss Prevention (DLP) ePO extension 11.6
    McAfee Data Loss Prevention (DLP) ePO extension 11.7
    McAfee Data Loss Prevention (DLP) ePO extension 11.8
  • Risk Level:
    8.4
  • Exploitability:
    Unproven
  • Consequences:
    Gain Access

DESCRIPTION

McAfee Data Loss Prevention (DLP) ePO extension is vulnerable to SQL injection. A remote authenticated attacker could send specially-crafted SQL statements to ePO database using the DLP part, which could allow the attacker to execute arbitrary code on the ePO server with privilege escalation.

CVSS 3.0 Information

  • Privileges Required: High
  • User Interaction: Required
  • Scope: Changed
  • Access Vector: Network
  • Access Complexity: Low
  • Confidentiality Impact: High
  • Integrity Impact: High
  • Availability Impact: High
  • Remediation Level: Official Fix

MITIGATION

Refer to McAfee Security Bulletin ID: SB10376 for patch, upgrade or suggested workaround information. See References.

  • Reference Link:
    https://kc.mcafee.com/corporate/index?page=content&id=SB10376
  • Reference Link:
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-4088

If you like the site, please consider joining the telegram channel and supporting us on Patreon using the button below.

Digital Patreon Wordmark FieryCoralv2

You may have missed

unlock membership

Fortifying the Backbone: Cybersecurity for Critical Infrastructure

November 15, 2024
news

Bank of England U-Turns on Critical Third Party Vulnerability Disclosure Rules

November 15, 2024
news

Sitting Ducks DNS Attacks Threaten Over 1 Million Global Domains

November 15, 2024
news

API Security Threats: 83% of Companies Experience Security Incidents

November 15, 2024
news

Microsoft Power Pages: Misconfiguration Risks and Data Exposure

November 15, 2024