Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mcafee application control vulnerabilities and exploits
(subscribe to this query)
3.5
CVSSv2
CVE-2020-7309
Cross Site Scripting vulnerability in ePO extension in McAfee Application Control (MAC) before 8.3.1 allows administrators to inject arbitrary web script or HTML via specially crafted input in the policy discovery section.
Mcafee Application And Change Control
4.6
CVSSv2
CVE-2021-31833
Potential product security bypass vulnerability in McAfee Application and Change Control (MACC) prior to version 8.3.4 allows a locally logged in malicious user to circumvent the application solidification protection provided by MACC, permitting them to run applications that woul...
Mcafee Application And Change Control
4.4
CVSSv2
CVE-2020-7260
DLL Side Loading vulnerability in the installer for McAfee Application and Change Control (MACC) before 8.3 allows local users to execute arbitrary code via execution from a compromised folder.
Mcafee Application And Change Control
4.6
CVSSv2
CVE-2020-7334
Improper privilege assignment vulnerability in the installer McAfee Application and Change Control (MACC) before 8.3.2 allows local administrators to change or update the configuration settings via a carefully constructed MSI configured to mimic the genuine installer. This versio...
Mcafee Application And Change Control
5
CVSSv2
CVE-2013-7462
A directory traversal vulnerability in the web application in McAfee (now Intel Security) SaaS Control Console (SCC) Platform 6.14 before patch 1070, and 6.15 before patch 1076 allows unauthenticated users to view contents of arbitrary system files that did not have file system l...
Mcafee Saas Control Console Platform
6.8
CVSSv2
CVE-2006-3961
Buffer overflow in McSubMgr ActiveX control (mcsubmgr.dll) in McAfee Security Center 6.0.23 for Internet Security Suite 2006, Wireless Home Network Security, Personal Firewall Plus, VirusScan, Privacy Service, SpamKiller, AntiSpyware, and QuickClean allows remote user-assisted ma...
Mcafee Internet Security Suite 2005
Mcafee Internet Security Suite 2006
Mcafee Quickclean 2004
Mcafee Quickclean 2005
Mcafee Spamkiller 6.0
Mcafee Spamkiller 7.0
Mcafee Virusscan 2004
Mcafee Personal Firewall Plus 2004
Mcafee Personal Firewall Plus 2005
Mcafee Quickclean 2006
Mcafee Security Center 4.3
Mcafee Antispyware 2005
Mcafee Personal Firewall Plus 2006
Mcafee Privacy Service 2004
Mcafee Security Center 6.0
Mcafee Security Center 6.0.22
Mcafee Wireless Home Network Security 2006
Mcafee Virusscan 2005
Mcafee Virusscan 2006
Mcafee Antispyware 2006
Mcafee Internet Security Suite 2004
Mcafee Privacy Service 2005
1 EDB exploit
5.5
CVSSv2
CVE-2016-1715
The swin.sys kernel driver in McAfee Application Control (MAC) 6.1.0 before build 706, 6.1.1 before build 404, 6.1.2 before build 449, 6.1.3 before build 441, and 6.2.0 before build 505 on 32-bit Windows platforms allows local users to cause a denial of service (memory corruption...
Microsoft Windows
Mcafee Application Control 6.1.3
Mcafee Application Control 6.2.0
Mcafee Application Control 6.1.1
Mcafee Application Control 6.1.0
Mcafee Application Control 6.1.2
3.6
CVSSv2
CVE-2018-6690
Accessing, modifying, or executing executable files vulnerability in Microsoft Windows client in McAfee Application and Change Control (MACC) 8.0.0 Hotfix 4 and previous versions allows authenticated users to execute arbitrary code via file transfer from external system.
Mcafee Application Change Control
Mcafee Application Change Control 8.0.0
4.6
CVSSv2
CVE-2020-7337
Incorrect Permission Assignment for Critical Resource vulnerability in McAfee VirusScan Enterprise (VSE) before 8.8 Patch 16 allows local administrators to bypass local security protection through VSE not correctly integrating with Windows Defender Application Control via careful...
Mcafee Virusscan Enterprise 8.8
Mcafee Virusscan Enterprise
5
CVSSv2
CVE-2020-13935
The payload length in a WebSocket frame was not correctly validated in Apache Tomcat 10.0.0-M1 to 10.0.0-M6, 9.0.0.M1 to 9.0.36, 8.5.0 to 8.5.56 and 7.0.27 to 7.0.104. Invalid payload lengths could trigger an infinite loop. Multiple requests with invalid payload lengths could lea...
Apache Tomcat 9.0.0
Apache Tomcat 10.0.0
Apache Tomcat
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Netapp Oncommand System Manager
Opensuse Leap 15.1
Opensuse Leap 15.2
Canonical Ubuntu Linux 20.04
Canonical Ubuntu Linux 16.04
Mcafee Epolicy Orchestrator 5.9.0
Mcafee Epolicy Orchestrator 5.9.1
Mcafee Epolicy Orchestrator 5.10.0
Oracle Managed File Transfer 12.2.1.3.0
Oracle Instantis Enterprisetrack 17.1
Oracle Instantis Enterprisetrack 17.2
Oracle Instantis Enterprisetrack 17.3
Oracle Agile Plm 9.3.3
Oracle Agile Plm 9.3.5
Oracle Agile Plm 9.3.6
Oracle Workload Manager 18c
Oracle Workload Manager 19c
3 Github repositories
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site scripting
CVE-2024-5158
XML external entity
CVE-2024-4262
CVE-2024-2036
CVE-2024-4985
CVE-2024-21791
remote attackers
CVE-2023-43208
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »