CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2015-8765

HIGH
8.3
CVSS Severity Score
EPSS Score0.1740%
EPSS Percentile35.17th
Published2016年1月8日
Last Modified2026年5月6日

Vulnerability Description

Intel McAfee ePolicy Orchestrator (ePO) 4.6.9 and earlier, 5.0.x, 5.1.x before 5.1.3 Hotfix 1106041, and 5.3.x before 5.3.1 Hotfix 1106041 allow remote attackers to execute arbitrary code via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library.

Affected Platforms (CPE)

📦
Mcafee

Epolicy Orchestrator

<= 4.6.9
📦
Mcafee

Epolicy Orchestrator

>= 5.0.0 and <= 5.0.1
📦
Mcafee

Epolicy Orchestrator

>= 5.1.0 and < 5.1.3
📦
Mcafee

Epolicy Orchestrator

>= 5.3.0 and < 5.3.1

References & Advisories

🔗 https://kc.mcafee.com/corporate/index?page=content&id=SB10144
🔗 https://www.kb.cert.org/vuls/id/576313
🔗 https://kc.mcafee.com/corporate/index?page=content&id=SB10144
🔗 https://www.kb.cert.org/vuls/id/576313

相關漏洞威脅

CVE-2006-515610.0

Buffer overflow in McAfee ePolicy Orchestrator before 3.5.0.720 and ProtectionPilot before 1.1.1.126 allows remote attackers to ex...

CVE-2016-802710.0

SQL injection vulnerability in core services in Intel Security McAfee ePolicy Orchestrator (ePO) 5.3.2 and earlier and 5.1.3 and e...

CVE-2002-069010.0

Format string vulnerability in McAfee Security ePolicy Orchestrator (ePO) 2.5.1 allows remote attackers to execute arbitrary code ...

CVE-2007-14989.3

Multiple stack-based buffer overflows in the SiteManager.SiteMgr.1 ActiveX control (SiteManager.dll) in the ePO management console...