Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mcafee web gateway vulnerabilities and exploits
(subscribe to this query)
7.7
CVSSv2
CVE-2020-7293
Privilege Escalation vulnerability in McAfee Web Gateway (MWG) before 9.2.1 allows authenticated user interface user with low permissions to change the system's root password via improper access controls in the user interface.
Mcafee Web Gateway
4.1
CVSSv2
CVE-2020-7294
Privilege Escalation vulnerability in McAfee Web Gateway (MWG) before 9.2.1 allows authenticated user interface user to delete or download protected files via improper access controls in the REST interface.
Mcafee Web Gateway
4.1
CVSSv2
CVE-2020-7295
Privilege Escalation vulnerability in McAfee Web Gateway (MWG) before 9.2.1 allows authenticated user interface user to delete or download protected log data via improper access controls in the user interface.
Mcafee Web Gateway
2.7
CVSSv2
CVE-2020-7296
Privilege Escalation vulnerability in McAfee Web Gateway (MWG) before 9.2.1 allows authenticated user interface user to access protected configuration files via improper access control in the user interface.
Mcafee Web Gateway
2.7
CVSSv2
CVE-2020-7297
Privilege Escalation vulnerability in McAfee Web Gateway (MWG) before 9.2.1 allows authenticated user interface user to access protected dashboard data via improper access control in the user interface.
Mcafee Web Gateway
4
CVSSv2
CVE-2014-6064
The Accounts tab in the administrative user interface in McAfee Web Gateway (MWG) prior to 7.3.2.9 and 7.4.x prior to 7.4.2 allows remote authenticated users to obtain the hashed user passwords via unspecified vectors.
Mcafee Web Gateway
9
CVSSv2
CVE-2021-23885
Privilege escalation vulnerability in McAfee Web Gateway (MWG) before 9.2.8 allows an authenticated user to gain elevated privileges through the User Interface and execute commands on the appliance via incorrect improper neutralization of user input in the troubleshooting page.
Mcafee Web Gateway
4
CVSSv2
CVE-2014-2535
Directory traversal vulnerability in McAfee Web Gateway (MWG) 7.4.x prior to 7.4.1, 7.3.x prior to 7.3.2.6, and 7.2.0.9 and previous versions allows remote authenticated users to read arbitrary files via a crafted request to the web filtering port.
Mcafee Web Gateway
5.8
CVSSv2
CVE-2022-1254
A URL redirection vulnerability in Skyhigh SWG in main releases 10.x before 10.2.9, 9.x before 9.2.20, 8.x before 8.2.27, and 7.x before 7.8.2.31, and controlled release 11.x before 11.1.3 allows a remote malicious user to redirect a user to a malicious website controlled by the ...
Mcafee Web Gateway
5
CVSSv2
CVE-2012-2212
McAfee Web Gateway 7.0 allows remote malicious users to bypass the access configuration for the CONNECT method by providing an arbitrary allowed hostname in the Host HTTP header. NOTE: this issue might not be reproducible, because the researcher did not provide configuration deta...
Mcafee Web Gateway 7.0.0
1 Github repository
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
remote code execution
CVE-2024-34909
CVE-2024-3317
SSTI
CVE-2024-3400
CVE-2024-30051
wireless
CVE-2024-4622
CVE-2024-4908
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »