Two vulnerabilities in ePolicy Orchestrator (ePO) has been discovered and resolved:

CVE Numbers:

CVE-2017-3732

CVE-2016-7055

Severity Rating:

Medium

Base / Overall CVSS v3 Scores:

  1. 5.3 / 4.6
  2. 3.1 / 2.7

 

This vulnerability affects the following versions of ePO

  • 5.1.3 and lower
  • 5.3.2 and lower

 

SB10188 - Intel Security – Security Bulletin: McAfee products with multiple OpenSSL vulnerabilities

 

The update can be downloaded from the McAfee Download Site using an active grant number.