CVE-2019-3604

Name of the Vulnerable Software and Affected Versions McAfee ePO (legacy) Cloud (affected versions not specified)

Description The issue is related to a Cross-Site Request Forgery (CSRF) vulnerability, which allows unauthenticated users to perform unintended actions using an authenticated user's session. This can be exploited by a remote attacker to execute arbitrary actions on a vulnerable device and gain access to the vulnerable application. The vulnerability is associated with the lack of protection against CSRF attacks.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.