NVD

Id
25976  
Name
CVE-2015-4559  
Description
Cross-site scripting (XSS) vulnerability in the product deployment feature in the Java core web services in Intel McAfee ePolicy Orchestrator (ePO) before 5.1.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:N/I:P/A:N)  
Pub Date
2017-01-19  
Published
2015-06-15  
Modified Date
2016-11-28  
Seq
2015-4559  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
137312 25976 CVE-2015-4559 91539  View
137313 25976 CVE-2015-4559 1032671  View
137314 25976 CVE-2015-4559 https://kc.mcafee.com/corporate/index?page=content&id=SB10121  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
7817 JVNDB-2015-003137 Intel McAfee ePolicy Orchestrator の Java Core Web サービスの 製品展開機能におけるクロスサイトスクリプティングの脆弱性 Intel McAfee ePolicy Orchestrator (ePO) の Java Core Web サービスの 製品展開 (product deployment) 機能には、クロスサイトスクリプティングの脆弱性が存在します。 CVE-2015-4559 81784 CVE-2015-4559 25976 4.3 http://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-003137.html 2015-06-04 2015-06-18 View