CVE-2013-0141

medium

Trellix

CVSS v3 Base Score

4.3

AV:A/AC:M/Au:N/C:P/I:P/A:N

EPSS Score

0.4%

Exploitation probability in 30 days

Top 38% most likely to be exploited

Attack Characteristics

Attack Vector

Adjacent

Attack Complexity

Confidentiality

Integrity

Availability

None

Published: May 1, 2013 (4761 days ago)

Last Modified: April 29, 2026

Vendor: Trellix

Source: NVD

Description

Directory traversal vulnerability in McAfee ePolicy Orchestrator (ePO) before 4.5.7 and 4.6.x before 4.6.6 allows remote attackers to upload arbitrary files via a crafted request over the Agent-Server communication channel, as demonstrated by writing to the Software/ directory.

CWE

CWE-22

Affected Products

mcafee epolicy orchestrator

References

🔗 seclists.org 🔗 www.kb.cert.org 🔗 www.us-cert.gov 🔗 kc.mcafee.com 🔗 seclists.org

CVE-2013-0141

Vulnerability Report

Description

CWE

Affected Products

References