Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mcafee agent vulnerabilities and exploits
(subscribe to this query)
4.6
CVSSv2
CVE-2019-3592
Privilege escalation vulnerability in McAfee Agent (MA) prior to 5.6.1 HF3, allows local administrator users to potentially disable some McAfee processes by manipulating the MA directory control and placing a carefully constructed file in the MA directory.
Mcafee Agent
2.1
CVSSv2
CVE-2020-7343
Missing Authorization vulnerability in McAfee Agent (MA) for Windows before 5.7.1 allows local users to block McAfee product updates by manipulating a directory used by MA for temporary files. The product would continue to function with out-of-date detection files.
Mcafee Agent
9.3
CVSSv2
CVE-2021-31854
A command Injection Vulnerability in McAfee Agent (MA) for Windows before 5.7.5 allows local users to inject arbitrary shell code into the file cleanup.exe. The malicious clean.exe file is placed into the relevant folder and executed by running the McAfee Agent deployment feature...
Mcafee Agent
6.5
CVSSv2
CVE-2013-4882
Multiple SQL injection vulnerabilities in McAfee ePolicy Orchestrator 4.6.6 and previous versions, and the ePolicy Orchestrator (ePO) extension for McAfee Agent (MA) 4.5 and 4.6, allow remote authenticated users to execute arbitrary SQL commands via the uid parameter to (1) core/...
Mcafee Epolicy Orchestrator 4.6.5
Mcafee Epolicy Orchestrator 4.6.4
Mcafee Epolicy Orchestrator
Mcafee Epolicy Orchestrator Agent 4.5
Mcafee Epolicy Orchestrator 4.6.3
Mcafee Epolicy Orchestrator 4.6.2
Mcafee Epolicy Orchestrator Agent 4.6
Mcafee Epolicy Orchestrator 4.6.0
Mcafee Epolicy Orchestrator 4.6.1
1 EDB exploit
4.3
CVSSv2
CVE-2013-4883
Multiple cross-site scripting (XSS) vulnerabilities in McAfee ePolicy Orchestrator 4.6.6 and previous versions, and the ePO Extension for the McAfee Agent (MA) 4.5 up to and including 4.6, allow remote malicious users to inject arbitrary web script or HTML via the (1) instanceId ...
Mcafee Epolicy Orchestrator 4.6.3
Mcafee Epolicy Orchestrator 4.6.2
Mcafee Epolicy Orchestrator Agent 4.6
Mcafee Epolicy Orchestrator 4.6.0
Mcafee Epolicy Orchestrator 4.6.1
Mcafee Epolicy Orchestrator 4.6.5
Mcafee Epolicy Orchestrator 4.6.4
Mcafee Epolicy Orchestrator
Mcafee Epolicy Orchestrator Agent 4.5
1 EDB exploit
5
CVSSv2
CVE-2006-5417
McAfee Network Agent (mcnasvc.exe) 1.0.178.0, as used by multiple McAfee products possibly including Internet Security Suite, Personal Firewall Plus, and VirusScan, allows remote malicious users to cause a denial of service (agent crash) via a long packet, possibly because of an ...
Mcafee Internet Security Suite
Mcafee Network Agent 1.0.178.0
Mcafee Personal Firewall Plus
Mcafee Virusscan
3.5
CVSSv2
CVE-2012-4587
McAfee Enterprise Mobility Manager (EMM) Agent prior to 4.8 and Server prior to 10.1, when one-time provisioning (OTP) mode is enabled, have an improper dependency on DNS SRV records, which makes it easier for remote malicious users to discover user passwords by spoofing the EMM ...
Mcafee Enterprise Mobility Manager
Mcafee Enterprise Mobility Manager Agent
4.3
CVSSv2
CVE-2012-4588
McAfee Enterprise Mobility Manager (EMM) Agent prior to 4.8 and Server prior to 10.1 record all invalid usernames presented in failed login attempts, and place them on a list of accounts that an administrator may wish to unlock, which allows remote malicious users to cause a deni...
Mcafee Enterprise Mobility Manager
Mcafee Enterprise Mobility Manager Agent
7.2
CVSSv2
CVE-2005-4505
Unquoted Windows search path vulnerability in McAfee VirusScan Enterprise 8.0i (patch 11) and CMA 3.5 (patch 5) might allow local users to gain privileges via a malicious "program.exe" file in the C: folder, which is run by naPrdMgr.exe when it attempts to execute EntVU...
Mcafee Common Management Agent 3.5
Mcafee Virusscan Enterprise 8.0i
1 EDB exploit
4.6
CVSSv2
CVE-2002-1875
Entercept Agent 2.5 agent for Windows, released before May 21, 2002, allows local administrative users to obtain the entercept agent password, which could allow the administrators to log on as the entercept_agent account and conceal their identity.
Mcafee Entercept Agent 2.5
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »