Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mcafee agent vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-2313
A DLL hijacking vulnerability in the MA Smart Installer for Windows before 5.7.7, which allows local users to execute arbitrary code and obtain higher privileges via careful placement of a malicious DLL into the folder from where the Smart installer is being executed.
Mcafee Agent
3.5
CVSSv2
CVE-2015-8987
Man-in-the-middle (MitM) attack vulnerability in non-Mac OS agents in McAfee (now Intel Security) Agent (MA) 4.8.0 patch 2 and previous versions allows malicious users to make a McAfee Agent talk with another, possibly rogue, ePO server via McAfee Agent migration to another ePO s...
Mcafee Agent
5
CVSSv2
CVE-2013-3627
FrameworkService.exe in McAfee Framework Service in McAfee Managed Agent (MA) prior to 4.5.0.1927 and 4.6 prior to 4.6.0.3258 allows remote malicious users to cause a denial of service (service crash) via a malformed HTTP request.
Mcafee Agent
6.5
CVSSv2
CVE-2013-4882
Multiple SQL injection vulnerabilities in McAfee ePolicy Orchestrator 4.6.6 and previous versions, and the ePolicy Orchestrator (ePO) extension for McAfee Agent (MA) 4.5 and 4.6, allow remote authenticated users to execute arbitrary SQL commands via the uid parameter to (1) core/...
Mcafee Epolicy Orchestrator 4.6.5
Mcafee Epolicy Orchestrator 4.6.4
Mcafee Epolicy Orchestrator
Mcafee Epolicy Orchestrator Agent 4.5
Mcafee Epolicy Orchestrator 4.6.3
Mcafee Epolicy Orchestrator 4.6.2
Mcafee Epolicy Orchestrator Agent 4.6
Mcafee Epolicy Orchestrator 4.6.0
Mcafee Epolicy Orchestrator 4.6.1
1 EDB exploit
4.3
CVSSv2
CVE-2013-4883
Multiple cross-site scripting (XSS) vulnerabilities in McAfee ePolicy Orchestrator 4.6.6 and previous versions, and the ePO Extension for the McAfee Agent (MA) 4.5 up to and including 4.6, allow remote malicious users to inject arbitrary web script or HTML via the (1) instanceId ...
Mcafee Epolicy Orchestrator 4.6.3
Mcafee Epolicy Orchestrator 4.6.2
Mcafee Epolicy Orchestrator Agent 4.6
Mcafee Epolicy Orchestrator 4.6.0
Mcafee Epolicy Orchestrator 4.6.1
Mcafee Epolicy Orchestrator 4.6.5
Mcafee Epolicy Orchestrator 4.6.4
Mcafee Epolicy Orchestrator
Mcafee Epolicy Orchestrator Agent 4.5
1 EDB exploit
5
CVSSv2
CVE-2006-5417
McAfee Network Agent (mcnasvc.exe) 1.0.178.0, as used by multiple McAfee products possibly including Internet Security Suite, Personal Firewall Plus, and VirusScan, allows remote malicious users to cause a denial of service (agent crash) via a long packet, possibly because of an ...
Mcafee Internet Security Suite
Mcafee Network Agent 1.0.178.0
Mcafee Personal Firewall Plus
Mcafee Virusscan
3.5
CVSSv2
CVE-2012-4587
McAfee Enterprise Mobility Manager (EMM) Agent prior to 4.8 and Server prior to 10.1, when one-time provisioning (OTP) mode is enabled, have an improper dependency on DNS SRV records, which makes it easier for remote malicious users to discover user passwords by spoofing the EMM ...
Mcafee Enterprise Mobility Manager
Mcafee Enterprise Mobility Manager Agent
4.3
CVSSv2
CVE-2012-4588
McAfee Enterprise Mobility Manager (EMM) Agent prior to 4.8 and Server prior to 10.1 record all invalid usernames presented in failed login attempts, and place them on a list of accounts that an administrator may wish to unlock, which allows remote malicious users to cause a deni...
Mcafee Enterprise Mobility Manager
Mcafee Enterprise Mobility Manager Agent
7.2
CVSSv2
CVE-2005-4505
Unquoted Windows search path vulnerability in McAfee VirusScan Enterprise 8.0i (patch 11) and CMA 3.5 (patch 5) might allow local users to gain privileges via a malicious "program.exe" file in the C: folder, which is run by naPrdMgr.exe when it attempts to execute EntVU...
Mcafee Common Management Agent 3.5
Mcafee Virusscan Enterprise 8.0i
1 EDB exploit
5
CVSSv2
CVE-2006-3623
Directory traversal vulnerability in Framework Service component in McAfee ePolicy Orchestrator agent 3.5.0.x and previous versions allows remote malicious users to create arbitrary files via a .. (dot dot) in the directory and filename in a PropsResponse (PackageType) request.
Mcafee Epolicy Orchestrator Agent
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »