PT-2022-13478 · Mcafee · Mcafee Enterprise Epolicy Orchestrator

Published

2022-03-23

Updated

2023-11-15

CVE-2022-0859

CVSS v3.1

6.7

Medium

Vector

AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions McAfee Enterprise ePolicy Orchestrator (ePO) versions prior to 5.10 Update 13

Description The issue allows a local attacker to point an ePO server to an arbitrary SQL server during the restoration of the ePO server. This can be achieved if the attacker is logged onto the server hosting the ePO server, which is restricted to administrators, and knows the SQL server password.

Recommendations For versions prior to 5.10 Update 13, update to version 5.10 Update 13 or later to resolve the issue. As a temporary workaround, consider restricting access to the ePO server restoration process and limiting knowledge of the SQL server password to authorized personnel.

Fix

Insufficiently Protected Credentials

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-522

Related Identifiers

CVE-2022-0859

Affected Products

Mcafee Enterprise Epolicy Orchestrator

PT-2022-13478 · Mcafee · Mcafee Enterprise Epolicy Orchestrator

CVE-2022-0859

Weakness Enumeration

Related Identifiers

Affected Products

References · 4