CVE-2015-8765

Published: Jan 8, 2016Modified: May 6, 2026

8.3

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L

Exploitability: 3.9 / Impact: 3.7

Source: NVD

Description

Intel McAfee ePolicy Orchestrator (ePO) 4.6.9 and earlier, 5.0.x, 5.1.x before 5.1.3 Hotfix 1106041, and 5.3.x before 5.3.1 Hotfix 1106041 allow remote attackers to execute arbitrary code via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library.

Affected (4)

Products: Mcafee: Epolicy Orchestrator

Mcafee

1 product

Epolicy Orchestrator

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Mcafee Epolicy Orchestrator	Up to 4.6.9
Mcafee Epolicy Orchestrator	From 5.0.0 to 5.0.1
Mcafee Epolicy Orchestrator	From 5.1.0 to 5.1.3
Mcafee Epolicy Orchestrator	From 5.3.0 to 5.3.1

References (4)

https://kc.mcafee.com/corporate/index?page=content&id=SB10144

Source: cve@mitre.org

Vendor Advisory

https://www.kb.cert.org/vuls/id/576313

Source: cve@mitre.org

Third Party AdvisoryUS Government Resource

https://kc.mcafee.com/corporate/index?page=content&id=SB10144

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://www.kb.cert.org/vuls/id/576313

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryUS Government Resource

Timeline

No history available yet.