Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mcafee vulnerability manager vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv2
CVE-2017-3960
Exploitation of Authorization vulnerability in the web interface in McAfee Network Security Management (NSM) prior to 8.2.7.42.2 allows authenticated users to gain elevated privileges via a crafted HTTP request parameter.
Mcafee Network Security Manager
6.5
CVSSv2
CVE-2014-2587
SQL injection vulnerability in jsp/reports/ReportsAudit.jsp in McAfee Asset Manager 6.6 allows remote authenticated users to execute arbitrary SQL commands via the username of an audit report (aka user parameter).
Mcafee Asset Manager 6.6
1 EDB exploit
3.5
CVSSv2
CVE-2017-3964
Reflective Cross-Site Scripting (XSS) vulnerability in the web interface in McAfee Network Security Management (NSM) prior to 8.2.7.42.2 allows malicious users to inject arbitrary web script or HTML via a URL parameter.
Mcafee Network Security Manager
4.3
CVSSv2
CVE-2017-3969
Abuse of communication channels vulnerability in the server in McAfee Network Security Management (NSM) prior to 8.2.7.42.2 allows man-in-the-middle malicious users to decrypt messages via an inadequate implementation of SSL.
Mcafee Network Security Manager
7.5
CVSSv2
CVE-2019-3597
Authentication Bypass vulnerability in McAfee Network Security Manager (NSM) 9.1 < 9.1.7.75.2 and 9.2 < 9.2.7.31 (9.2 Update 2) allows unauthenticated users to gain administrator rights via incorrect handling of expired GUI sessions.
Mcafee Network Security Manager
7.5
CVSSv2
CVE-2017-3972
Infrastructure-based foot printing vulnerability in the web interface in McAfee Network Security Management (NSM) prior to 8.2.7.42.2 allows malicious users to execute arbitrary code via the server banner leaking potentially sensitive or security relevant information.
Mcafee Network Security Manager
3.5
CVSSv2
CVE-2018-6681
Abuse of Functionality vulnerability in the web interface in McAfee Network Security Management (NSM) 9.1.7.11 and previous versions allows authenticated users to allow arbitrary HTML code to be reflected in the response web page via appliance web interface.
Mcafee Network Security Manager
3.5
CVSSv2
CVE-2017-3961
Cross-Site Scripting (XSS) vulnerability in the web interface in McAfee Network Security Management (NSM) prior to 8.2.7.42.2 allows authenticated users to allow arbitrary HTML code to be reflected in the response web page via crafted user input of attributes.
Mcafee Network Security Manager
4.3
CVSSv2
CVE-2017-3967
Target influence via framing vulnerability in the web interface in McAfee Network Security Management (NSM) prior to 8.2.7.42.2 allows remote malicious users to inject arbitrary web script or HTML via application pages inability to break out of 3rd party HTML frames.
Mcafee Network Security Manager
6.5
CVSSv2
CVE-2017-3966
Exploitation of session variables, resource IDs and other trusted credentials vulnerability in the web interface in McAfee Network Security Management (NSM) prior to 8.2.7.42.2 allows remote malicious users to exploit or harm a user's browser via reusing the exposed session ...
Mcafee Network Security Manager
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
CVE-2023-52162
CVE-2024-23670
CVE-2024-5404
man-in-the-middle
CVE-2024-5214
CVE-2024-4358
CVE-2024-20696
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »