Vulnerabilities > CVE-2020-7329 - Server-Side Request Forgery (SSRF) vulnerability in Mcafee Mvision Endpoint
Attack vector
NETWORK Attack complexity
LOW Privileges required
HIGH Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
Server-side request forgery vulnerability in the ePO extension in McAfee MVISION Endpoint prior to 20.11 allows remote attackers trigger server-side DNS requests to arbitrary domains via carefully constructed XML files loaded by an ePO administrator.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 5 |