Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mcafee epolicy orchestrator 2.5 vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv2
CVE-2003-0148
The default installation of MSDE via McAfee ePolicy Orchestrator 2.0 up to and including 3.0 allows malicious users to execute arbitrary code via a series of steps that (1) obtain the database administrator username and encrypted password in a configuration file from the ePO serv...
Mcafee Epolicy Orchestrator 2.5
Mcafee Epolicy Orchestrator 2.5.1
Mcafee Epolicy Orchestrator 3.0
Mcafee Epolicy Orchestrator 2.0
7.5
CVSSv2
CVE-2003-0616
Format string vulnerability in ePO service for McAfee ePolicy Orchestrator 2.0, 2.5, and 2.5.1 allows remote malicious users to execute arbitrary code via a POST request with format strings in the computerlist parameter, which are used when logging a failed name resolution.
Mcafee Epolicy Orchestrator 2.5.1
Mcafee Epolicy Orchestrator 2.5
Mcafee Epolicy Orchestrator 2.0
7.5
CVSSv2
CVE-2004-0038
McAfee ePolicy Orchestrator (ePO) 2.5.1 Patch 13 and 3.0 SP2a Patch 3 allows remote malicious users to execute arbitrary commands via certain HTTP POST requests to the spipe/file handler on ePO TCP port 81.
Mcafee Epolicy Orchestrator 2.5.1
Mcafee Epolicy Orchestrator 2.5
Mcafee Epolicy Orchestrator 3.0
7.5
CVSSv2
CVE-2003-0149
Heap-based buffer overflow in ePO agent for McAfee ePolicy Orchestrator 2.0, 2.5, and 2.5.1 allows remote malicious users to execute arbitrary code via a POST request containing long parameters.
Mcafee Epolicy Orchestrator 2.5
Mcafee Epolicy Orchestrator 2.0
Mcafee Epolicy Orchestrator 2.5.1
4
CVSSv2
CVE-2012-4594
McAfee ePolicy Orchestrator (ePO) 4.6.1 and previous versions allows remote authenticated users to bypass intended access restrictions, and obtain sensitive information from arbitrary reporting panels, via a modified ID value in a console URL.
Mcafee Epolicy Orchestrator 4.0
Mcafee Epolicy Orchestrator 2.0
Mcafee Epolicy Orchestrator 3.5.0
Mcafee Epolicy Orchestrator 3.6.0
Mcafee Epolicy Orchestrator 2.5
Mcafee Epolicy Orchestrator 3.6.1
Mcafee Epolicy Orchestrator 4.5.0
Mcafee Epolicy Orchestrator 2.5.1
Mcafee Epolicy Orchestrator
Mcafee Epolicy Orchestrator 4.6.0
Mcafee Epolicy Orchestrator 3.0
7.9
CVSSv2
CVE-2013-0140
SQL injection vulnerability in the Agent-Handler component in McAfee ePolicy Orchestrator (ePO) prior to 4.5.7 and 4.6.x prior to 4.6.6 allows remote malicious users to execute arbitrary SQL commands via a crafted request over the Agent-Server communication channel.
Mcafee Epolicy Orchestrator 3.6.1
Mcafee Epolicy Orchestrator 3.6.0
Mcafee Epolicy Orchestrator 2.0
Mcafee Epolicy Orchestrator 4.5.5
Mcafee Epolicy Orchestrator 3.0
Mcafee Epolicy Orchestrator 2.5
Mcafee Epolicy Orchestrator 3.5.0
Mcafee Epolicy Orchestrator 4.5.4
Mcafee Epolicy Orchestrator 4.5.3
Mcafee Epolicy Orchestrator
Mcafee Epolicy Orchestrator 4.5.0
Mcafee Epolicy Orchestrator 4.0
Mcafee Epolicy Orchestrator 2.5.1
Mcafee Epolicy Orchestrator 4.6.4
Mcafee Epolicy Orchestrator 4.6.3
Mcafee Epolicy Orchestrator 4.6.0
Mcafee Epolicy Orchestrator 4.6.2
Mcafee Epolicy Orchestrator 4.6.1
Mcafee Epolicy Orchestrator 4.6.5
1 EDB exploit
1 Github repository
4.3
CVSSv2
CVE-2013-0141
Directory traversal vulnerability in McAfee ePolicy Orchestrator (ePO) prior to 4.5.7 and 4.6.x prior to 4.6.6 allows remote malicious users to upload arbitrary files via a crafted request over the Agent-Server communication channel, as demonstrated by writing to the Software/ di...
Mcafee Epolicy Orchestrator 3.6.0
Mcafee Epolicy Orchestrator 3.5.0
Mcafee Epolicy Orchestrator 4.5.5
Mcafee Epolicy Orchestrator 4.5.4
Mcafee Epolicy Orchestrator 4.0
Mcafee Epolicy Orchestrator 3.6.1
Mcafee Epolicy Orchestrator 2.5
Mcafee Epolicy Orchestrator 2.0
Mcafee Epolicy Orchestrator 4.5.0
Mcafee Epolicy Orchestrator 2.5.1
Mcafee Epolicy Orchestrator 3.0
Mcafee Epolicy Orchestrator 4.5.3
Mcafee Epolicy Orchestrator
Mcafee Epolicy Orchestrator 4.6.4
Mcafee Epolicy Orchestrator 4.6.3
Mcafee Epolicy Orchestrator 4.6.1
Mcafee Epolicy Orchestrator 4.6.5
Mcafee Epolicy Orchestrator 4.6.0
Mcafee Epolicy Orchestrator 4.6.2
1 Github repository
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-21111
CVE-2024-32884
IDOR
CVE-2023-1000
CVE-2024-33260
CVE-2024-3682
reflected XSS
race condition
CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started