Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mcafee web gateway vulnerabilities and exploits
(subscribe to this query)
5.8
CVSSv2
CVE-2022-1254
A URL redirection vulnerability in Skyhigh SWG in main releases 10.x before 10.2.9, 9.x before 9.2.20, 8.x before 8.2.27, and 7.x before 7.8.2.31, and controlled release 11.x before 11.1.3 allows a remote malicious user to redirect a user to a malicious website controlled by the ...
Mcafee Web Gateway
5.8
CVSSv2
CVE-2021-3450
The X509_V_FLAG_X509_STRICT flag enables additional security checks of the certificates present in a certificate chain. It is not set by default. Starting from OpenSSL version 1.1.1h a check to disallow certificates in the chain that have explicitly encoded elliptic curve paramet...
Openssl Openssl
Freebsd Freebsd 12.2
Netapp Santricity Smi-s Provider Firmware -
Netapp Storagegrid Firmware -
Windriver Linux -
Windriver Linux 18.0
Windriver Linux 19.0
Windriver Linux 17.0
Netapp Oncommand Workflow Automation -
Netapp Storagegrid -
Netapp Ontap Select Deploy Administration Utility -
Netapp Cloud Volumes Ontap Mediator -
Fedoraproject Fedora 34
Tenable Nessus Agent
Tenable Nessus
Tenable Nessus Network Monitor 5.11.1
Tenable Nessus Network Monitor 5.12.0
Tenable Nessus Network Monitor 5.12.1
Tenable Nessus Network Monitor 5.13.0
Tenable Nessus Network Monitor 5.11.0
Oracle Jd Edwards World Security A9.4
Oracle Weblogic Server 12.2.1.4.0
1 Github repository
1 Article
5.8
CVSSv2
CVE-2019-3639
Clickjack vulnerability in Adminstrator web console in McAfee Web Gateway (MWG) 7.8.2.x before 7.8.2.12 allows remote malicious users to conduct clickjacking attacks via a crafted web page that contains an iframe via does not send an X-Frame-Options HTTP header.
Mcafee Web Gateway
5
CVSSv2
CVE-2019-3643
McAfee Web Gateway (MWG) earlier than 7.8.2.13 is vulnerable to a remote attacker exploiting CVE-2019-9511, potentially leading to a denial of service. This affects the scanning proxies.
Mcafee Web Gateway
Mcafee Active Response 2.0.1
Mcafee Active Response 2.1
Mcafee Active Response 2.2
Mcafee Active Response 2.3
Mcafee Active Response 2.4
Mcafee Active Response 2.0
Mcafee Enterprise Security Manager 10.2.0
Mcafee Enterprise Security Manager 10.3.4
Mcafee Enterprise Security Manager 10.4.0
Mcafee Enterprise Security Manager 11.0.0
Mcafee Enterprise Security Manager 11.1.0
Mcafee Enterprise Security Manager 11.1.1
Mcafee Enterprise Security Manager 11.1.2
Mcafee Enterprise Security Manager 11.1.3
Mcafee Enterprise Security Manager 11.2.0
Mcafee Advanced Threat Defense 4.0
Mcafee Advanced Threat Defense 4.2
Mcafee Advanced Threat Defense 4.4
Mcafee Advanced Threat Defense 4.6
Mcafee Active Response 1.0.0
Mcafee Active Response 1.1.0
5
CVSSv2
CVE-2019-3644
McAfee Web Gateway (MWG) earlier than 7.8.2.13 is vulnerable to a remote attacker exploiting CVE-2019-9517, potentially leading to a denial of service. This affects the scanning proxies.
Mcafee Web Gateway
Mcafee Active Response 2.0.1
Mcafee Active Response 2.1
Mcafee Active Response 2.2
Mcafee Active Response 2.3
Mcafee Active Response 2.4
Mcafee Active Response 2.0
Mcafee Enterprise Security Manager 10.2.0
Mcafee Enterprise Security Manager 10.3.4
Mcafee Enterprise Security Manager 10.4.0
Mcafee Enterprise Security Manager 11.0.0
Mcafee Enterprise Security Manager 11.1.0
Mcafee Enterprise Security Manager 11.1.1
Mcafee Enterprise Security Manager 11.1.2
Mcafee Enterprise Security Manager 11.1.3
Mcafee Enterprise Security Manager 11.2.0
Mcafee Advanced Threat Defense 4.0
Mcafee Advanced Threat Defense 4.2
Mcafee Advanced Threat Defense 4.4
Mcafee Advanced Threat Defense 4.6
Mcafee Active Response 1.0.0
Mcafee Active Response 1.1.0
5
CVSSv2
CVE-2019-3581
Improper input validation in the proxy component of McAfee Web Gateway 7.8.2.0 and later allows remote malicious users to cause a denial of service via a crafted HTTP request parameter.
Mcafee Mcafee Web Gateway
5
CVSSv2
CVE-2016-4447
The xmlParseElementDecl function in parser.c in libxml2 prior to 2.9.4 allows context-dependent malicious users to cause a denial of service (heap-based buffer underread and application crash) via a crafted file, involving xmlParseName.
Hp Icewall Federation Agent 3.0
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 15.10
Canonical Ubuntu Linux 14.04
Debian Debian Linux 8.0
Debian Debian Linux 7.0
Oracle Vm Server 3.4
Oracle Vm Server 3.3
Apple Itunes 12.4.1
Apple Iphone Os
Apple Tvos
Apple Watchos
Apple Mac Os X
Xmlsoft Libxml2
Mcafee Web Gateway
5
CVSSv2
CVE-2012-2212
McAfee Web Gateway 7.0 allows remote malicious users to bypass the access configuration for the CONNECT method by providing an arbitrary allowed hostname in the Host HTTP header. NOTE: this issue might not be reproducible, because the researcher did not provide configuration deta...
Mcafee Web Gateway 7.0.0
1 Github repository
4.9
CVSSv2
CVE-2019-6454
An issue exists in sd-bus in systemd 239. bus_process_object() in libsystemd/sd-bus/bus-objects.c allocates a variable-length stack buffer for temporarily storing the object path of incoming D-Bus messages. An unprivileged local user can exploit this by sending a specially crafte...
Systemd Project Systemd 239
Opensuse Leap 15.0
Netapp Active Iq Performance Analytics Services -
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Fedoraproject Fedora 29
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 18.10
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Workstation 7.0
Redhat Enterprise Linux Server 7.0
Redhat Enterprise Linux Server Tus 7.3
Redhat Enterprise Linux Server Aus 7.3
Redhat Enterprise Linux Server Aus 7.4
Redhat Enterprise Linux Server Tus 7.4
Redhat Enterprise Linux Eus 7.4
Redhat Enterprise Linux Eus 7.5
Redhat Enterprise Linux Server Tus 7.6
Redhat Enterprise Linux Server Eus 7.6
Redhat Enterprise Linux Server Aus 7.6
Redhat Enterprise Linux 8.0
4.9
CVSSv2
CVE-2012-4582
McAfee Email and Web Security (EWS) 5.x prior to 5.5 Patch 6 and 5.6 before Patch 3, and McAfee Email Gateway (MEG) 7.0 before Patch 1, allows remote authenticated users to reset the passwords of arbitrary administrative accounts via unspecified vectors.
Mcafee Email And Web Security 5.6
Mcafee Email Gateway 7.0
Mcafee Email And Web Security 5.0
Mcafee Email And Web Security 5.5
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »