CVE-2021-31832

CVE-2021-31832

Improper Neutralization of Input in the ePO administrator extension for McAfee Data Loss Prevention (DLP) Endpoint for Windows prior to 11.6.200 allows a remote ePO DLP administrator to inject JavaScript code into the alert configuration text field. This JavaScript will be executed when an end user triggers a DLP policy on their machine.

Source: CVE-2021-31832

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다