Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mcafee web gateway vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2019-3581
Improper input validation in the proxy component of McAfee Web Gateway 7.8.2.0 and later allows remote malicious users to cause a denial of service via a crafted HTTP request parameter.
Mcafee Mcafee Web Gateway
9.8
CVSSv3
CVE-2018-6667
Authentication Bypass vulnerability in the administrative user interface in McAfee Web Gateway 7.8.1.0 up to and including 7.8.1.5 allows remote malicious users to execute arbitrary code via Java management extensions (JMX).
Mcafee Mcafee Web Gateway
NA
CVE-2012-4595
McAfee Email and Web Security (EWS) 5.5 through Patch 6 and 5.6 through Patch 3, and McAfee Email Gateway (MEG) 7.0.0 and 7.0.1, allows remote malicious users to bypass authentication and obtain an admin session ID via unspecified vectors.
Mcafee Email And Web Security 5.6
Mcafee Email Gateway 7.0.1
Mcafee Email And Web Security 5.5
Mcafee Email Gateway 7.0.0
NA
CVE-2012-4597
Cross-site scripting (XSS) vulnerability in McAfee Email and Web Security (EWS) 5.5 through Patch 6 and 5.6 through Patch 3, and McAfee Email Gateway (MEG) 7.0.0 and 7.0.1, allows remote malicious users to inject arbitrary web script or HTML via vectors related to the McAfee Secu...
Mcafee Email And Web Security 5.6
Mcafee Email Gateway 7.0.1
Mcafee Email And Web Security 5.5
Mcafee Email Gateway 7.0.0
9.1
CVSSv3
CVE-2018-6677
Directory Traversal vulnerability in the administrative user interface in McAfee Web Gateway (MWG) MWG 7.8.1.x allows authenticated administrator users to gain elevated privileges via unspecified vectors.
Mcafee Mcafee Web Gateway 7.8.1.0
9.1
CVSSv3
CVE-2018-6678
Configuration/Environment manipulation vulnerability in the administrative interface in McAfee Web Gateway (MWG) MWG 7.8.1.x allows authenticated administrator users to execute arbitrary commands via unspecified vectors.
Mcafee Mcafee Web Gateway 7.8.1.0
6.5
CVSSv3
CVE-2019-3635
Exfiltration of Data in McAfee Web Gateway (MWG) 7.8.2.x before 7.8.2.12 allows malicious users to obtain sensitive data via crafting a complex webpage that will trigger the Web Gateway to block the user accessing an iframe.
Mcafee Web Gateway
7.1
CVSSv3
CVE-2019-3639
Clickjack vulnerability in Adminstrator web console in McAfee Web Gateway (MWG) 7.8.2.x before 7.8.2.12 allows remote malicious users to conduct clickjacking attacks via a crafted web page that contains an iframe via does not send an X-Frame-Options HTTP header.
Mcafee Web Gateway
NA
CVE-2014-6064
The Accounts tab in the administrative user interface in McAfee Web Gateway (MWG) prior to 7.3.2.9 and 7.4.x prior to 7.4.2 allows remote authenticated users to obtain the hashed user passwords via unspecified vectors.
Mcafee Web Gateway
NA
CVE-2014-2535
Directory traversal vulnerability in McAfee Web Gateway (MWG) 7.4.x prior to 7.4.1, 7.3.x prior to 7.3.2.6, and 7.2.0.9 and previous versions allows remote authenticated users to read arbitrary files via a crafted request to the web filtering port.
Mcafee Web Gateway
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4541
CVE-2024-3080
CVE-2024-4787
log injection
CVE-2024-5967
inject
CVE-2024-30078
CVE-2024-5899
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »