cvedb.io
CVE-2018-6671
MEDIUM · CVSS 4.7
EPSS exploitation probability: 0%
Published 2018-06-15T14:29:00.447 · Last modified 2026-06-17T02:02:11.540

Summary

Application Protection Bypass vulnerability in McAfee ePolicy Orchestrator (ePO) 5.3.0 through 5.3.3 and 5.9.0 through 5.9.1 allows remote authenticated users to bypass localhost only access security protection for some ePO features via a specially crafted HTTP request.

Affected products

mcafee — epolicy_orchestrator

Does this affect you?

Add your gear to cvedb and we'll alert you only when mcafee ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.