Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mcafee web gateway vulnerabilities and exploits
(subscribe to this query)
685
VMScore
CVE-2020-7293
Privilege Escalation vulnerability in McAfee Web Gateway (MWG) before 9.2.1 allows authenticated user interface user with low permissions to change the system's root password via improper access controls in the user interface.
Mcafee Web Gateway
365
VMScore
CVE-2020-7294
Privilege Escalation vulnerability in McAfee Web Gateway (MWG) before 9.2.1 allows authenticated user interface user to delete or download protected files via improper access controls in the REST interface.
Mcafee Web Gateway
365
VMScore
CVE-2020-7295
Privilege Escalation vulnerability in McAfee Web Gateway (MWG) before 9.2.1 allows authenticated user interface user to delete or download protected log data via improper access controls in the user interface.
Mcafee Web Gateway
240
VMScore
CVE-2020-7296
Privilege Escalation vulnerability in McAfee Web Gateway (MWG) before 9.2.1 allows authenticated user interface user to access protected configuration files via improper access control in the user interface.
Mcafee Web Gateway
383
VMScore
CVE-2020-7292
Inappropriate Encoding for output context vulnerability in McAfee Web Gateway (MWG) before 9.2.1 allows a remote malicious user to cause MWG to return an ambiguous redirect response via getting a user to click on a malicious URL.
Mcafee Web Gateway
383
VMScore
CVE-2019-3638
Reflected Cross Site Scripting vulnerability in Administrators web console in McAfee Web Gateway (MWG) 7.8.x before 7.8.2.13 allows remote malicious users to collect sensitive information or execute commands with the MWG administrator's credentials via tricking the administr...
Mcafee Web Gateway
445
VMScore
CVE-2019-3643
McAfee Web Gateway (MWG) earlier than 7.8.2.13 is vulnerable to a remote attacker exploiting CVE-2019-9511, potentially leading to a denial of service. This affects the scanning proxies.
Mcafee Web Gateway
Mcafee Active Response 2.0.1
Mcafee Active Response 2.1
Mcafee Active Response 2.2
Mcafee Active Response 2.3
Mcafee Active Response 2.4
Mcafee Active Response 2.0
Mcafee Enterprise Security Manager 10.2.0
Mcafee Enterprise Security Manager 10.3.4
Mcafee Enterprise Security Manager 10.4.0
Mcafee Enterprise Security Manager 11.0.0
Mcafee Enterprise Security Manager 11.1.0
Mcafee Enterprise Security Manager 11.1.1
Mcafee Enterprise Security Manager 11.1.2
Mcafee Enterprise Security Manager 11.1.3
Mcafee Enterprise Security Manager 11.2.0
Mcafee Advanced Threat Defense 4.0
Mcafee Advanced Threat Defense 4.2
Mcafee Advanced Threat Defense 4.4
Mcafee Advanced Threat Defense 4.6
Mcafee Active Response 1.0.0
Mcafee Active Response 1.1.0
445
VMScore
CVE-2019-3644
McAfee Web Gateway (MWG) earlier than 7.8.2.13 is vulnerable to a remote attacker exploiting CVE-2019-9517, potentially leading to a denial of service. This affects the scanning proxies.
Mcafee Web Gateway
Mcafee Active Response 2.0.1
Mcafee Active Response 2.1
Mcafee Active Response 2.2
Mcafee Active Response 2.3
Mcafee Active Response 2.4
Mcafee Active Response 2.0
Mcafee Enterprise Security Manager 10.2.0
Mcafee Enterprise Security Manager 10.3.4
Mcafee Enterprise Security Manager 10.4.0
Mcafee Enterprise Security Manager 11.0.0
Mcafee Enterprise Security Manager 11.1.0
Mcafee Enterprise Security Manager 11.1.1
Mcafee Enterprise Security Manager 11.1.2
Mcafee Enterprise Security Manager 11.1.3
Mcafee Enterprise Security Manager 11.2.0
Mcafee Advanced Threat Defense 4.0
Mcafee Advanced Threat Defense 4.2
Mcafee Advanced Threat Defense 4.4
Mcafee Advanced Threat Defense 4.6
Mcafee Active Response 1.0.0
Mcafee Active Response 1.1.0
383
VMScore
CVE-2019-3635
Exfiltration of Data in McAfee Web Gateway (MWG) 7.8.2.x before 7.8.2.12 allows malicious users to obtain sensitive data via crafting a complex webpage that will trigger the Web Gateway to block the user accessing an iframe.
Mcafee Web Gateway
516
VMScore
CVE-2019-3639
Clickjack vulnerability in Adminstrator web console in McAfee Web Gateway (MWG) 7.8.2.x before 7.8.2.12 allows remote malicious users to conduct clickjacking attacks via a crafted web page that contains an iframe via does not send an X-Frame-Options HTTP header.
Mcafee Web Gateway
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »