Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mcafee web gateway vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2016-3969
Cross-site scripting (XSS) vulnerability in McAfee Email Gateway (MEG) 7.6.x prior to 7.6.404, when File Filtering is enabled with the action set to ESERVICES:REPLACE, allows remote malicious users to inject arbitrary web script or HTML via an attachment in a blocked email.
Mcafee Email Gateway 7.6.4
Mcafee Email Gateway 7.6.3
Mcafee Email Gateway 7.6.2
Mcafee Email Gateway 7.6.1
Mcafee Email Gateway 7.6
4.3
CVSSv2
CVE-2012-4580
Cross-site scripting (XSS) vulnerability in McAfee Email and Web Security (EWS) 5.x prior to 5.5 Patch 6 and 5.6 before Patch 3, and McAfee Email Gateway (MEG) 7.0 before Patch 1, allows remote malicious users to inject arbitrary web script or HTML via vectors related to the McAf...
Mcafee Email And Web Security 5.0
Mcafee Email And Web Security 5.6
Mcafee Email Gateway 7.0
Mcafee Email And Web Security 5.5
4.3
CVSSv2
CVE-2012-4597
Cross-site scripting (XSS) vulnerability in McAfee Email and Web Security (EWS) 5.5 through Patch 6 and 5.6 through Patch 3, and McAfee Email Gateway (MEG) 7.0.0 and 7.0.1, allows remote malicious users to inject arbitrary web script or HTML via vectors related to the McAfee Secu...
Mcafee Email And Web Security 5.5
Mcafee Email And Web Security 5.6
Mcafee Email Gateway 7.0.0
Mcafee Email Gateway 7.0.1
4.1
CVSSv2
CVE-2020-7294
Privilege Escalation vulnerability in McAfee Web Gateway (MWG) before 9.2.1 allows authenticated user interface user to delete or download protected files via improper access controls in the REST interface.
Mcafee Web Gateway
4.1
CVSSv2
CVE-2020-7295
Privilege Escalation vulnerability in McAfee Web Gateway (MWG) before 9.2.1 allows authenticated user interface user to delete or download protected log data via improper access controls in the user interface.
Mcafee Web Gateway
4
CVSSv2
CVE-2014-6064
The Accounts tab in the administrative user interface in McAfee Web Gateway (MWG) prior to 7.3.2.9 and 7.4.x prior to 7.4.2 allows remote authenticated users to obtain the hashed user passwords via unspecified vectors.
Mcafee Web Gateway
4
CVSSv2
CVE-2014-2535
Directory traversal vulnerability in McAfee Web Gateway (MWG) 7.4.x prior to 7.4.1, 7.3.x prior to 7.3.2.6, and 7.2.0.9 and previous versions allows remote authenticated users to read arbitrary files via a crafted request to the web filtering port.
Mcafee Web Gateway
4
CVSSv2
CVE-2012-4583
McAfee Email and Web Security (EWS) 5.x prior to 5.5 Patch 6 and 5.6 before Patch 3, and McAfee Email Gateway (MEG) 7.0 before Patch 1, allows remote authenticated users to obtain the session tokens of arbitrary users by navigating within the Dashboard.
Mcafee Email And Web Security 5.0
Mcafee Email And Web Security 5.5
Mcafee Email And Web Security 5.6
Mcafee Email Gateway 7.0
4
CVSSv2
CVE-2012-4585
McAfee Email and Web Security (EWS) 5.x prior to 5.5 Patch 6 and 5.6 before Patch 3, and McAfee Email Gateway (MEG) 7.0 before Patch 1, allows remote authenticated users to read arbitrary files via a crafted URL.
Mcafee Email Gateway 7.0
Mcafee Email And Web Security 5.5
Mcafee Email And Web Security 5.6
Mcafee Email And Web Security 5.0
3.5
CVSSv2
CVE-2015-1619
Cross-site scripting (XSS) vulnerability in the Secure Web Mail Client user interface in McAfee Email Gateway (MEG) 7.6.x prior to 7.6.3.2, 7.5.x prior to 75.6, 7.0.x up to and including 7.0.5, 5.6, and previous versions allows remote authenticated users to inject arbitrary web s...
Mcafee Email Gateway 7.6.1
Mcafee Email Gateway 7.6.2
Mcafee Email Gateway 7.6.3
Mcafee Email Gateway 7.5
Mcafee Email Gateway 7.5.1
Mcafee Email Gateway 7.0
Mcafee Email Gateway 7.0.1
Mcafee Email Gateway 7.0.2
Mcafee Email Gateway 7.0.3
Mcafee Email Gateway 7.6
Mcafee Email Gateway 7.5.3
Mcafee Email Gateway 7.5.5
Mcafee Email Gateway 7.0.4
Mcafee Email Gateway
Mcafee Email Gateway 7.5.2
Mcafee Email Gateway 7.5.4
Mcafee Email Gateway 7.0.5
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »