Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mcafee vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2021-31854
A command Injection Vulnerability in McAfee Agent (MA) for Windows before 5.7.5 allows local users to inject arbitrary shell code into the file cleanup.exe. The malicious clean.exe file is placed into the relevant folder and executed by running the McAfee Agent deployment feature...
Mcafee Agent
9.3
CVSSv2
CVE-2021-44228
Apache Log4j2 2.0-beta9 up to and including 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An attacker who can contr...
Apache Log4j 2.0
Apache Log4j
Siemens Sppa-t3000 Ses3000 Firmware
Siemens Logo\\! Soft Comfort
Siemens Spectrum Power 4 4.70
Siemens Spectrum Power 4
Siemens Siveillance Control Pro
Siemens Energyip Prepay 3.7
Siemens Energyip Prepay 3.8
Siemens Siveillance Identity 1.6
Siemens Siveillance Identity 1.5
Siemens Siveillance Command
Siemens Sipass Integrated 2.85
Siemens Sipass Integrated 2.80
Siemens Head-end System Universal Device Integration System
Siemens Gma-manager
Siemens Energyip 8.5
Siemens Energyip 8.6
Siemens Energyip 8.7
Siemens Energyip 9.0
Siemens Energy Engage 3.1
Siemens E-car Operation Center
2 Metasploit modules
1155 Github repositories
28 Articles
9.3
CVSSv2
CVE-2016-1834
Heap-based buffer overflow in the xmlStrncat function in libxml2 prior to 2.9.4, as used in Apple iOS prior to 9.3.2, OS X prior to 10.11.5, tvOS prior to 9.2.1, and watchOS prior to 2.2.1, allows remote malicious users to execute arbitrary code or cause a denial of service (memo...
Canonical Ubuntu Linux 15.10
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 12.04
Apple Tvos
Apple Iphone Os
Apple Mac Os X
Apple Watchos
Debian Debian Linux 8.0
Redhat Enterprise Linux Server Aus 7.4
Redhat Enterprise Linux Server Tus 7.6
Redhat Enterprise Linux Server Tus 7.3
Redhat Enterprise Linux Server Tus 7.2
Redhat Enterprise Linux Server Aus 7.6
Redhat Enterprise Linux Server 7.0
Redhat Enterprise Linux Server Eus 7.4
Redhat Enterprise Linux Server Eus 7.3
Redhat Enterprise Linux Server Eus 7.2
Redhat Enterprise Linux Server Eus 7.5
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Server Aus 7.2
Redhat Enterprise Linux Desktop 7.0
9.3
CVSSv2
CVE-2015-8024
McAfee Enterprise Security Manager (ESM), Enterprise Security Manager/Log Manager (ESMLM), and Enterprise Security Manager/Receiver (ESMREC) 9.3.x prior to 9.3.2MR19, 9.4.x prior to 9.4.2MR9, and 9.5.x prior to 9.5.0MR8, when configured to use Active Directory or LDAP authenticat...
Mcafee Mcafee Enterprise Security Manager 9.3.2
Mcafee Mcafee Enterprise Security Manager 9.3.1
Mcafee Mcafee Enterprise Security Manager 9.3.0
Mcafee Mcafee Enterprise Security Manager 9.4.0
Mcafee Mcafee Enterprise Security Manager 9.4.1
Mcafee Mcafee Enterprise Security Manager 9.4.2
Mcafee Mcafee Enterprise Security Manager 9.5.0
1 Article
9.3
CVSSv2
CVE-2009-5118
Untrusted search path vulnerability in McAfee VirusScan Enterprise prior to 8.7i allows local users to gain privileges via a Trojan horse DLL in an unspecified directory, as demonstrated by scanning a document located on a remote share.
Mcafee Virusscan Enterprise 8.0i
Mcafee Virusscan Enterprise
9.3
CVSSv2
CVE-2012-4598
An unspecified ActiveX control in McAfee Virtual Technician (MVT) prior to 6.4, and ePO-MVT, allows remote malicious users to execute arbitrary code or cause a denial of service (Internet Explorer crash) via a crafted web site.
Mcafee Mcafee Virtual Technician
Mcafee Epo Mcafee Virtual Technician 1.0
Mcafee Epo Mcafee Virtual Technician 1.0.4.0
Mcafee Epo Mcafee Virtual Technician
2 EDB exploits
9.3
CVSSv2
CVE-2009-1491
McAfee GroupShield for Microsoft Exchange on Exchange Server 2000, and possibly other anti-virus or anti-spam products from McAfee or other vendors, does not scan X- headers for malicious content, which allows remote malicious users to bypass virus detection via a crafted message...
Mcafee Groupshield
9.3
CVSSv2
CVE-2007-2957
Integer overflow in McAfee E-Business Server prior to 8.5.3 for Solaris, and prior to 8.1.2 for Linux, HP-UX, and AIX, allows remote malicious users to execute arbitrary code via a large length value in an authentication packet, which results in a heap-based buffer overflow.
Mcafee E-business Server
9.3
CVSSv2
CVE-2007-1498
Multiple stack-based buffer overflows in the SiteManager.SiteMgr.1 ActiveX control (SiteManager.dll) in the ePO management console in McAfee ePolicy Orchestrator (ePO) prior to 3.6.1 Patch 1 and ProtectionPilot (PRP) prior to 1.5.0 HotFix allow remote malicious users to execute a...
Mcafee Epolicy Orchestrator 3.5.0
Mcafee Epolicy Orchestrator 3.6.0
Mcafee Epolicy Orchestrator 3.6.1
Mcafee Protectionpilot 1.1.1
Mcafee Protectionpilot 1.5.0
9
CVSSv2
CVE-2021-31838
A command injection vulnerability in MVISION EDR (MVEDR) before 3.4.0 allows an authenticated MVEDR administrator to trigger the EDR client to execute arbitrary commands through PowerShell using the EDR functionality 'execute reaction'.
Mcafee Mvision Edr
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-34377
CVE-2024-20859
CVE-2023-49606
inject
arbitrary
CVE-2024-33788
CVE-2024-30973
IDOR
CVE-2024-33907
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »