CyberSec.Space Logo
Back to CVE Browser

CVE-2015-8765

HIGH
8.3
CVSS Severity Score
EPSS Score0.1740%
EPSS Percentile35.17th
PublishedJan 8, 2016
Last ModifiedMay 6, 2026

Vulnerability Description

Intel McAfee ePolicy Orchestrator (ePO) 4.6.9 and earlier, 5.0.x, 5.1.x before 5.1.3 Hotfix 1106041, and 5.3.x before 5.3.1 Hotfix 1106041 allow remote attackers to execute arbitrary code via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library.

Affected Platforms (CPE)

πŸ“¦
Mcafee

Epolicy Orchestrator

<= 4.6.9
πŸ“¦
Mcafee

Epolicy Orchestrator

>= 5.0.0 and <= 5.0.1
πŸ“¦
Mcafee

Epolicy Orchestrator

>= 5.1.0 and < 5.1.3
πŸ“¦
Mcafee

Epolicy Orchestrator

>= 5.3.0 and < 5.3.1

References & Advisories

πŸ”— https://kc.mcafee.com/corporate/index?page=content&id=SB10144
πŸ”— https://www.kb.cert.org/vuls/id/576313
πŸ”— https://kc.mcafee.com/corporate/index?page=content&id=SB10144
πŸ”— https://www.kb.cert.org/vuls/id/576313

Related Vulnerabilities

CVE-2006-515610.0

Buffer overflow in McAfee ePolicy Orchestrator before 3.5.0.720 and ProtectionPilot before 1.1.1.126 allows remote attackers to ex...

CVE-2016-802710.0

SQL injection vulnerability in core services in Intel Security McAfee ePolicy Orchestrator (ePO) 5.3.2 and earlier and 5.1.3 and e...

CVE-2002-069010.0

Format string vulnerability in McAfee Security ePolicy Orchestrator (ePO) 2.5.1 allows remote attackers to execute arbitrary code ...

CVE-2007-14989.3

Multiple stack-based buffer overflows in the SiteManager.SiteMgr.1 ActiveX control (SiteManager.dll) in the ePO management console...