Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mcafee vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-5272
Stack-based buffer overflow in McAfee ePolicy Orchestrator 3.5 up to and including 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.6.0.453 and previous versions allows remote malicious users to execute arbitrary code via a crafted ping packet.
Mcafee Protectionpilot 1.1.1
Mcafee Common Management Agent
Mcafee Protectionpilot 1.5.0
Mcafee E-business Server 3.5
Mcafee E-business Server 3.6.1
6.1
CVSSv3
CVE-2016-3969
Cross-site scripting (XSS) vulnerability in McAfee Email Gateway (MEG) 7.6.x prior to 7.6.404, when File Filtering is enabled with the action set to ESERVICES:REPLACE, allows remote malicious users to inject arbitrary web script or HTML via an attachment in a blocked email.
Mcafee Email Gateway 7.6.4
Mcafee Email Gateway 7.6.3
Mcafee Email Gateway 7.6.2
Mcafee Email Gateway 7.6.1
Mcafee Email Gateway 7.6
NA
CVE-2006-5417
McAfee Network Agent (mcnasvc.exe) 1.0.178.0, as used by multiple McAfee products possibly including Internet Security Suite, Personal Firewall Plus, and VirusScan, allows remote malicious users to cause a denial of service (agent crash) via a long packet, possibly because of an ...
Mcafee Internet Security Suite
Mcafee Network Agent 1.0.178.0
Mcafee Personal Firewall Plus
Mcafee Virusscan
7
CVSSv3
CVE-2018-6707
Denial of Service through Resource Depletion vulnerability in the agent in non-Windows McAfee Agent (MA) 5.0.0 up to and including 5.0.6, 5.5.0, and 5.5.1 allows local users to cause DoS, unexpected behavior, or potentially unauthorized code execution via knowledge of the interna...
Mcafee Agent 5.5.1
Mcafee Agent 5.5.0
Mcafee Agent
5.3
CVSSv3
CVE-2018-6693
An unprivileged user can delete arbitrary files on a Linux system running ENSLTP 10.5.1, 10.5.0, and 10.2.3 Hotfix 1246778 and previous versions. By exploiting a time of check to time of use (TOCTOU) race condition during a specific scanning sequence, the unprivileged user is abl...
Mcafee Endpoint Security For Linux Threat Prevention
Mcafee Endpoint Security For Linux Threat Prevention 10.5.1
Mcafee Endpoint Security Linux Threat Prevention 10.5.0
7.8
CVSSv3
CVE-2018-6704
Privilege escalation vulnerability in McAfee Agent (MA) for Linux 5.0.0 up to and including 5.0.6, 5.5.0, and 5.5.1 allows local users to perform arbitrary command execution via specific conditions.
Mcafee Agent 5.5.1
Mcafee Agent 5.5.0
Mcafee Agent
7.5
CVSSv3
CVE-2018-6706
Insecure handling of temporary files in non-Windows McAfee Agent 5.0.0 up to and including 5.0.6, 5.5.0, and 5.5.1 allows an Unprivileged User to introduce custom paths during agent installation in Linux via unspecified vectors.
Mcafee Agent 5.5.1
Mcafee Agent 5.5.0
Mcafee Agent
7.8
CVSSv3
CVE-2018-6705
Privilege escalation vulnerability in McAfee Agent (MA) for Linux 5.0.0 up to and including 5.0.6, 5.5.0, and 5.5.1 allows local users to perform arbitrary command execution via specific conditions.
Mcafee Agent 5.5.1
Mcafee Agent 5.5.0
Mcafee Agent
NA
CVE-2010-2290
Cross-site scripting (XSS) vulnerability in cgi-bin/cgix/help in McAfee Unified Threat Management (UTM) Firewall (formerly SnapGear) firmware 3.0.0 up to and including 4.0.6 allows remote malicious users to inject arbitrary web script or HTML via the page parameter.
Mcafee Unified Threat Management Firewall Firmware 3.0.0
Mcafee Unified Threat Management Firewall Firmware 3.1.5
Mcafee Unified Threat Management Firewall Firmware 4.0.6
4.9
CVSSv3
CVE-2018-6660
Directory Traversal vulnerability in McAfee ePolicy Orchestrator (ePO) 5.3.2, 5.3.1, 5.3.0 and 5.9.0 allows administrators to use Windows alternate data streams, which could be used to bypass the file extensions, via not properly validating the path when exporting a particular XM...
Mcafee Epolicy Orchestrator 5.3.0
Mcafee Epolicy Orchestrator 5.3.1
Mcafee Epolicy Orchestrator 5.3.2
Mcafee Epolicy Orchestrator 5.9.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »