Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mcafee mcafee agent vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-5417
McAfee Network Agent (mcnasvc.exe) 1.0.178.0, as used by multiple McAfee products possibly including Internet Security Suite, Personal Firewall Plus, and VirusScan, allows remote malicious users to cause a denial of service (agent crash) via a long packet, possibly because of an ...
Mcafee Internet Security Suite
Mcafee Network Agent 1.0.178.0
Mcafee Personal Firewall Plus
Mcafee Virusscan
NA
CVE-2008-1357
Format string vulnerability in the logDetail function of applib.dll in McAfee Common Management Agent (CMA) 3.6.0.574 (Patch 3) and previous versions, as used in ePolicy Orchestrator 4.0.0 build 1015, allows remote malicious users to cause a denial of service (crash) or execute a...
Mcafee Cma 3.6.574
Mcafee Epolicy Orchestrator 4.0
Mcafee Cma 3.5.5.438
Mcafee Cma 3.6.438
Mcafee Agent 4.0
Mcafee Cma 3.0.6.453
Mcafee Mcafee Framework 3.6.569
Mcafee Cma 3.6.453
Mcafee Cma 3.6.546
1 EDB exploit
5.1
CVSSv3
CVE-2016-3984
The McAfee VirusScan Console (mcconsol.exe) in McAfee Active Response (MAR) prior to 1.1.0.161, Agent (MA) 5.x prior to 5.0.2 Hotfix 1110392 (5.0.2.333), Data Exchange Layer 2.x (DXL) prior to 2.0.1.140.1, Data Loss Prevention Endpoint (DLPe) 9.3 before Patch 6 and 9.4 before Pat...
Mcafee Active Response
Mcafee Data Loss Prevention Endpoint
Mcafee Data Exchange Layer
Mcafee Host Intrusion Prevention
Mcafee Virusscan Enterprise
Mcafee Agent
Mcafee Endpoint Security
1 EDB exploit
NA
CVE-2006-5274
Integer overflow in McAfee ePolicy Orchestrator 3.5 up to and including 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.5.5.438 allows remote malicious users to cause a denial of service (CMA Framework service crash) and possibly execute arbitrary code v...
Mcafee Common Management Agent 3.6.0.438
Mcafee Protectionpilot 1.5.0
Mcafee Epolicy Orchestrator 3.5.0
Mcafee Epolicy Orchestrator 3.6.0
Mcafee Protectionpilot 1.1.1
NA
CVE-2006-5272
Stack-based buffer overflow in McAfee ePolicy Orchestrator 3.5 up to and including 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.6.0.453 and previous versions allows remote malicious users to execute arbitrary code via a crafted ping packet.
Mcafee Protectionpilot 1.1.1
Mcafee Common Management Agent
Mcafee Protectionpilot 1.5.0
Mcafee E-business Server 3.5
Mcafee E-business Server 3.6.1
5.5
CVSSv3
CVE-2022-1257
Insecure storage of sensitive information vulnerability in MA for Linux, macOS, and Windows before 5.7.6 allows a local user to gain access to sensitive information through storage in ma.db. The sensitive information has been moved to encrypted database files.
Mcafee Agent
7.2
CVSSv3
CVE-2022-1258
A blind SQL injection vulnerability in the ePolicy Orchestrator (ePO) extension of MA before 5.7.6 can be exploited by an authenticated administrator on ePO to perform arbitrary SQL queries in the back-end database, potentially leading to command execution on the server.
Mcafee Agent
7.8
CVSSv3
CVE-2022-0166
A privilege escalation vulnerability in the McAfee Agent before 5.7.5. McAfee Agent uses openssl.cnf during the build process to specify the OPENSSLDIR variable as a subdirectory within the installation directory. A low privilege user could have created subdirectories and execute...
Mcafee Agent
NA
CVE-2013-3627
FrameworkService.exe in McAfee Framework Service in McAfee Managed Agent (MA) prior to 4.5.0.1927 and 4.6 prior to 4.6.0.3258 allows remote malicious users to cause a denial of service (service crash) via a malformed HTTP request.
Mcafee Agent
3.3
CVSSv3
CVE-2021-31839
Improper privilege management vulnerability in McAfee Agent for Windows before 5.7.3 allows a local user to modify event information in the MA event folder. This allows a local user to either add false events or remove events from the event logs prior to them being sent to the eP...
Mcafee Agent
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site request forgery
CVE-2024-34351
CVE-2024-1076
CVE-2024-25522
CVE-2024-34547
CVE-2024-4644
unauthorized
remote
CVE-2024-4671
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »