Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mcafee mcafee web gateway vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2012-4581
McAfee Email and Web Security (EWS) 5.x prior to 5.5 Patch 6 and 5.6 before Patch 3, and McAfee Email Gateway (MEG) 7.0 before Patch 1, does not disable the server-side session token upon the closing of the Management Console/Dashboard, which makes it easier for remote malicious ...
Mcafee Email And Web Security 5.6
Mcafee Email And Web Security 5.0
Mcafee Email And Web Security 5.5
Mcafee Email Gateway 7.0
NA
CVE-2012-4583
McAfee Email and Web Security (EWS) 5.x prior to 5.5 Patch 6 and 5.6 before Patch 3, and McAfee Email Gateway (MEG) 7.0 before Patch 1, allows remote authenticated users to obtain the session tokens of arbitrary users by navigating within the Dashboard.
Mcafee Email And Web Security 5.0
Mcafee Email And Web Security 5.5
Mcafee Email And Web Security 5.6
Mcafee Email Gateway 7.0
NA
CVE-2012-4585
McAfee Email and Web Security (EWS) 5.x prior to 5.5 Patch 6 and 5.6 before Patch 3, and McAfee Email Gateway (MEG) 7.0 before Patch 1, allows remote authenticated users to read arbitrary files via a crafted URL.
Mcafee Email Gateway 7.0
Mcafee Email And Web Security 5.5
Mcafee Email And Web Security 5.6
Mcafee Email And Web Security 5.0
NA
CVE-2015-1619
Cross-site scripting (XSS) vulnerability in the Secure Web Mail Client user interface in McAfee Email Gateway (MEG) 7.6.x prior to 7.6.3.2, 7.5.x prior to 75.6, 7.0.x up to and including 7.0.5, 5.6, and previous versions allows remote authenticated users to inject arbitrary web s...
Mcafee Email Gateway 7.6.1
Mcafee Email Gateway 7.6.2
Mcafee Email Gateway 7.6.3
Mcafee Email Gateway 7.5
Mcafee Email Gateway 7.5.1
Mcafee Email Gateway 7.0
Mcafee Email Gateway 7.0.1
Mcafee Email Gateway 7.0.2
Mcafee Email Gateway 7.0.3
Mcafee Email Gateway 7.6
Mcafee Email Gateway 7.5.3
Mcafee Email Gateway 7.5.5
Mcafee Email Gateway 7.0.4
Mcafee Email Gateway
Mcafee Email Gateway 7.5.2
Mcafee Email Gateway 7.5.4
Mcafee Email Gateway 7.0.5
7.1
CVSSv3
CVE-2019-3639
Clickjack vulnerability in Adminstrator web console in McAfee Web Gateway (MWG) 7.8.2.x before 7.8.2.12 allows remote malicious users to conduct clickjacking attacks via a crafted web page that contains an iframe via does not send an X-Frame-Options HTTP header.
Mcafee Web Gateway
8.8
CVSSv3
CVE-2021-23885
Privilege escalation vulnerability in McAfee Web Gateway (MWG) before 9.2.8 allows an authenticated user to gain elevated privileges through the User Interface and execute commands on the appliance via incorrect improper neutralization of user input in the troubleshooting page.
Mcafee Web Gateway
NA
CVE-2014-2535
Directory traversal vulnerability in McAfee Web Gateway (MWG) 7.4.x prior to 7.4.1, 7.3.x prior to 7.3.2.6, and 7.2.0.9 and previous versions allows remote authenticated users to read arbitrary files via a crafted request to the web filtering port.
Mcafee Web Gateway
NA
CVE-2014-6064
The Accounts tab in the administrative user interface in McAfee Web Gateway (MWG) prior to 7.3.2.9 and 7.4.x prior to 7.4.2 allows remote authenticated users to obtain the hashed user passwords via unspecified vectors.
Mcafee Web Gateway
9.6
CVSSv3
CVE-2019-3638
Reflected Cross Site Scripting vulnerability in Administrators web console in McAfee Web Gateway (MWG) 7.8.x before 7.8.2.13 allows remote malicious users to collect sensitive information or execute commands with the MWG administrator's credentials via tricking the administr...
Mcafee Web Gateway
6.5
CVSSv3
CVE-2019-3635
Exfiltration of Data in McAfee Web Gateway (MWG) 7.8.2.x before 7.8.2.12 allows malicious users to obtain sensitive data via crafting a complex webpage that will trigger the Web Gateway to block the user accessing an iframe.
Mcafee Web Gateway
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »