Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mcafee epolicy orchestrator vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2006-5156
Buffer overflow in McAfee ePolicy Orchestrator prior to 3.5.0.720 and ProtectionPilot prior to 1.1.1.126 allows remote malicious users to execute arbitrary code via a request to /spipe/pkg/ with a long source header.
Mcafee Protectionpilot 1.1.1
Mcafee Epolicy Orchestrator 3.0
Mcafee Epolicy Orchestrator 3.5.0
2 EDB exploits
10
CVSSv2
CVE-2002-0690
Format string vulnerability in McAfee Security ePolicy Orchestrator (ePO) 2.5.1 allows remote malicious users to execute arbitrary code via an HTTP GET request with a URI containing format strings.
Mcafee Epolicy Orchestrator 2.5.1
9.3
CVSSv2
CVE-2007-1498
Multiple stack-based buffer overflows in the SiteManager.SiteMgr.1 ActiveX control (SiteManager.dll) in the ePO management console in McAfee ePolicy Orchestrator (ePO) prior to 3.6.1 Patch 1 and ProtectionPilot (PRP) prior to 1.5.0 HotFix allow remote malicious users to execute a...
Mcafee Epolicy Orchestrator 3.5.0
Mcafee Epolicy Orchestrator 3.6.0
Mcafee Epolicy Orchestrator 3.6.1
Mcafee Protectionpilot 1.1.1
Mcafee Protectionpilot 1.5.0
7.9
CVSSv2
CVE-2013-0140
SQL injection vulnerability in the Agent-Handler component in McAfee ePolicy Orchestrator (ePO) prior to 4.5.7 and 4.6.x prior to 4.6.6 allows remote malicious users to execute arbitrary SQL commands via a crafted request over the Agent-Server communication channel.
Mcafee Epolicy Orchestrator 3.6.1
Mcafee Epolicy Orchestrator 3.6.0
Mcafee Epolicy Orchestrator 2.0
Mcafee Epolicy Orchestrator 4.5.5
Mcafee Epolicy Orchestrator 3.0
Mcafee Epolicy Orchestrator 2.5
Mcafee Epolicy Orchestrator 3.5.0
Mcafee Epolicy Orchestrator 4.5.4
Mcafee Epolicy Orchestrator 4.5.3
Mcafee Epolicy Orchestrator
Mcafee Epolicy Orchestrator 4.5.0
Mcafee Epolicy Orchestrator 4.0
Mcafee Epolicy Orchestrator 2.5.1
Mcafee Epolicy Orchestrator 4.6.4
Mcafee Epolicy Orchestrator 4.6.3
Mcafee Epolicy Orchestrator 4.6.0
Mcafee Epolicy Orchestrator 4.6.2
Mcafee Epolicy Orchestrator 4.6.1
Mcafee Epolicy Orchestrator 4.6.5
1 EDB exploit
1 Github repository
7.6
CVSSv2
CVE-2006-5271
Integer underflow in McAfee ePolicy Orchestrator 3.5 up to and including 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.6.0.453 and previous versions allows remote malicious users to execute arbitrary code via a crafted UDP packet, which causes stack co...
Mcafee E-business Server 3.6.1
Mcafee Protectionpilot 1.1.1
Mcafee Protectionpilot 1.5.0
Mcafee E-business Server 3.5
7.6
CVSSv2
CVE-2006-5274
Integer overflow in McAfee ePolicy Orchestrator 3.5 up to and including 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.5.5.438 allows remote malicious users to cause a denial of service (CMA Framework service crash) and possibly execute arbitrary code v...
Mcafee Common Management Agent 3.6.0.438
Mcafee Protectionpilot 1.5.0
Mcafee Epolicy Orchestrator 3.5.0
Mcafee Epolicy Orchestrator 3.6.0
Mcafee Protectionpilot 1.1.1
7.6
CVSSv2
CVE-2006-5273
Heap-based buffer overflow in McAfee ePolicy Orchestrator 3.5 up to and including 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.5.5.438 up to and including 3.6.0.453 allows remote malicious users to execute arbitrary code via a crafted packet.
Mcafee Protectionpilot 1.1.1
Mcafee Protectionpilot 1.5.0
Mcafee Common Management Agent
Mcafee Common Management Agent 3.6.0.438
Mcafee E-business Server 3.5
Mcafee E-business Server 3.6.1
7.5
CVSSv2
CVE-2017-3936
OS Command Injection vulnerability in McAfee ePolicy Orchestrator (ePO) 5.9.0, 5.3.2, 5.3.1, 5.1.3, 5.1.2, 5.1.1, and 5.1.0 allows malicious users to run arbitrary OS commands with limited privileges via not sanitizing the user input data before exporting it into a CSV format out...
Mcafee Epolicy Orchestrator 5.1.0
Mcafee Epolicy Orchestrator 5.1.3
Mcafee Epolicy Orchestrator 5.1.1
Mcafee Epolicy Orchestrator 5.1.2
Mcafee Epolicy Orchestrator 5.3.1
Mcafee Epolicy Orchestrator 5.3.2
Mcafee Epolicy Orchestrator 5.9.0
7.5
CVSSv2
CVE-2017-3907
Code Injection vulnerability in the ePolicy Orchestrator (ePO) extension in McAfee Threat Intelligence Exchange (TIE) Server 2.1.0 and previous versions allows remote malicious users to execute arbitrary HTML code to be reflected in the response web page via unspecified vector.
Mcafee Mcafee Threat Intelligence Exchange 2.1.0
7.5
CVSSv2
CVE-2016-8027
SQL injection vulnerability in core services in Intel Security McAfee ePolicy Orchestrator (ePO) 5.3.2 and previous versions and 5.1.3 and previous versions allows malicious users to alter a SQL query, which can result in disclosure of information within the database or impersona...
Mcafee Epolicy Orchestrator
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »