Lucene search

TrellixCVELIST:CVE-2021-4088

HistoryJan 24, 2022 - 4:00 p.m.

CVE-2021-4088 Blind SQL injection in DLP ePO extension

2022-01-2416:00:14

CWE-89

trellix

www.cve.org

cve-2021-4088

sql injection

data loss protection

dlp epo

remote authenticated attacker

remote code execution

privilege escalation

CVSS3

8.4

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H

EPSS

0.001

Percentile

35.2%

JSON

SQL injection vulnerability in Data Loss Protection (DLP) ePO extension 11.8.x prior to 11.8.100, 11.7.x prior to 11.7.101, and 11.6.401 allows a remote authenticated attacker to inject unfiltered SQL into the DLP part of the ePO database. This could lead to remote code execution on the ePO server with privilege escalation.

CNA Affected

[
  {
    "product": "McAfee Data Loss Prevention (DLP) ePO Extension",
    "vendor": "McAfee,LLC",
    "versions": [
      {
        "lessThan": "11.8.100",
        "status": "affected",
        "version": "11.8.x",
        "versionType": "custom"
      },
      {
        "lessThan": "11.7.101",
        "status": "affected",
        "version": "11.7.x",
        "versionType": "custom"
      },
      {
        "lessThan": "11.6.401",
        "status": "affected",
        "version": "11.6.x",
        "versionType": "custom"
      }
    ]
  }
]

References

kc.mcafee.com/corporate/index?page=content&id=SB10376

CVSS3

8.4

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H

EPSS

0.001

Percentile

35.2%

JSON

Related for CVELIST:CVE-2021-4088