Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mcafee web gateway vulnerabilities and exploits
(subscribe to this query)
4
CVSSv2
CVE-2012-4583
McAfee Email and Web Security (EWS) 5.x prior to 5.5 Patch 6 and 5.6 before Patch 3, and McAfee Email Gateway (MEG) 7.0 before Patch 1, allows remote authenticated users to obtain the session tokens of arbitrary users by navigating within the Dashboard.
Mcafee Email And Web Security 5.0
Mcafee Email And Web Security 5.5
Mcafee Email And Web Security 5.6
Mcafee Email Gateway 7.0
4
CVSSv2
CVE-2012-4585
McAfee Email and Web Security (EWS) 5.x prior to 5.5 Patch 6 and 5.6 before Patch 3, and McAfee Email Gateway (MEG) 7.0 before Patch 1, allows remote authenticated users to read arbitrary files via a crafted URL.
Mcafee Email Gateway 7.0
Mcafee Email And Web Security 5.5
Mcafee Email And Web Security 5.6
Mcafee Email And Web Security 5.0
7.5
CVSSv2
CVE-2012-4595
McAfee Email and Web Security (EWS) 5.5 through Patch 6 and 5.6 through Patch 3, and McAfee Email Gateway (MEG) 7.0.0 and 7.0.1, allows remote malicious users to bypass authentication and obtain an admin session ID via unspecified vectors.
Mcafee Email And Web Security 5.5
Mcafee Email And Web Security 5.6
Mcafee Email Gateway 7.0.0
Mcafee Email Gateway 7.0.1
5
CVSSv2
CVE-2012-2212
McAfee Web Gateway 7.0 allows remote malicious users to bypass the access configuration for the CONNECT method by providing an arbitrary allowed hostname in the Host HTTP header. NOTE: this issue might not be reproducible, because the researcher did not provide configuration deta...
Mcafee Web Gateway 7.0.0
1 Github repository
6.5
CVSSv2
CVE-2010-2116
The web interface in McAfee Email Gateway (formerly IronMail) 6.7.1 allows remote authenticated users, with only Read privileges, to gain Write privileges to modify configuration via the save action in a direct request to admin/systemWebAdminConfig.do.
Mcafee Email Gateway 6.7.1
Mcafee Secure Mail 6.7.1
4.6
CVSSv2
CVE-2009-2429
SmartFilter Web Gateway Security 4.2.1.00 stores user credentials in cleartext in admin_backup.xml files and uses insecure permissions for these files, which allows local users to gain privileges. NOTE: the provenance of this information is unknown; the details are obtained solel...
Mcafee Smartfilter 4.2.1.00
4.6
CVSSv2
CVE-2009-2312
SmartFilter Web Gateway Security 4.2.1.00 stores user credentials in cleartext in config.txt and uses insecure permissions for this file, which allows local users to gain privileges.
Mcafee Smartfilter 4.2.1.00
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6