Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mcafee vulnerabilities and exploits
(subscribe to this query)
9
CVSSv2
CVE-2021-23895
Deserialization of untrusted data vulnerability in McAfee Database Security (DBSec) before 4.8.2 allows a remote authenticated malicious user to create a reverse shell with administrator privileges on the DBSec server via carefully constructed Java serialized object sent to the D...
Mcafee Database Security
9
CVSSv2
CVE-2021-23885
Privilege escalation vulnerability in McAfee Web Gateway (MWG) before 9.2.8 allows an authenticated user to gain elevated privileges through the User Interface and execute commands on the appliance via incorrect improper neutralization of user input in the troubleshooting page.
Mcafee Web Gateway
9
CVSSv2
CVE-2018-6677
Directory Traversal vulnerability in the administrative user interface in McAfee Web Gateway (MWG) MWG 7.8.1.x allows authenticated administrator users to gain elevated privileges via unspecified vectors.
Mcafee Mcafee Web Gateway 7.8.1.0
9
CVSSv2
CVE-2013-7104
McAfee Email Gateway 7.6 allows remote authenticated administrators to execute arbitrary commands by specifying them in the value attribute in a (1) Command or (2) Script XML element. NOTE: this issue can be combined with CVE-2013-7092 to allow remote malicious users to execute c...
Mcafee Email Gateway 7.6
9
CVSSv2
CVE-2013-7103
McAfee Email Gateway 7.6 allows remote authenticated administrators to execute arbitrary commands via shell metacharacters in the value attribute in a (1) TestFile XML element or the (2) hostname. NOTE: this issue can be combined with CVE-2013-7092 to allow remote malicious users...
Mcafee Email Gateway 7.6
8.8
CVSSv2
CVE-2008-0127
The administration interface in McAfee E-Business Server 8.5.2 and previous versions allows remote malicious users to cause a denial of service (crash) and execute arbitrary code via a long initial authentication packet.
Mcafee E-business Server
1 EDB exploit
8.5
CVSSv2
CVE-2015-8772
McPvDrv.sys 4.6.111.0 in McAfee File Lock 5.x in McAfee Total Protection allows local users to obtain sensitive information from kernel memory or cause a denial of service (system crash) via a large VERIFY_INFORMATION.Length value in an IOCTL_DISK_VERIFY ioctl call.
Mcafee File Lock 5.0
8.5
CVSSv2
CVE-2013-6349
McAfee Email Gateway (MEG) 7.0 prior to 7.0.4 and 7.5 prior to 7.5.1 allows remote authenticated users to execute arbitrary commands via unspecified vectors.
Mcafee Email Gateway 7.5
Mcafee Email Gateway 7.0.1
Mcafee Email Gateway 7.0.3
Mcafee Email Gateway 7.0.2
8.2
CVSSv2
CVE-2012-5879
An ActiveX control in McHealthCheck.dll in McAfee Virtual Technician (MVT) and ePO-MVT 6.5.0.2101 and previous versions allows remote malicious users to modify or create arbitrary files via a full pathname argument to the Save method.
Mcafee Mcafee Virtual Technician
Mcafee Mcafee Virtual Technician 6.3.0.1911
Mcafee Epo Mcafee Virtual Technician 1.0.8
Mcafee Epo Mcafee Virtual Technician 1.0
Mcafee Epo Mcafee Virtual Technician 1.0.9
Mcafee Epo Mcafee Virtual Technician 1.0.4.0
Mcafee Epo Mcafee Virtual Technician 1.0.7
Mcafee Epo Mcafee Virtual Technician
1 EDB exploit
7.9
CVSSv2
CVE-2013-0140
SQL injection vulnerability in the Agent-Handler component in McAfee ePolicy Orchestrator (ePO) prior to 4.5.7 and 4.6.x prior to 4.6.6 allows remote malicious users to execute arbitrary SQL commands via a crafted request over the Agent-Server communication channel.
Mcafee Epolicy Orchestrator 3.6.1
Mcafee Epolicy Orchestrator 3.6.0
Mcafee Epolicy Orchestrator 2.0
Mcafee Epolicy Orchestrator 4.5.5
Mcafee Epolicy Orchestrator 3.0
Mcafee Epolicy Orchestrator 2.5
Mcafee Epolicy Orchestrator 3.5.0
Mcafee Epolicy Orchestrator 4.5.4
Mcafee Epolicy Orchestrator 4.5.3
Mcafee Epolicy Orchestrator
Mcafee Epolicy Orchestrator 4.5.0
Mcafee Epolicy Orchestrator 4.0
Mcafee Epolicy Orchestrator 2.5.1
Mcafee Epolicy Orchestrator 4.6.4
Mcafee Epolicy Orchestrator 4.6.3
Mcafee Epolicy Orchestrator 4.6.0
Mcafee Epolicy Orchestrator 4.6.2
Mcafee Epolicy Orchestrator 4.6.1
Mcafee Epolicy Orchestrator 4.6.5
1 EDB exploit
1 Github repository
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »