Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mcafee vulnerabilities and exploits
(subscribe to this query)
8.3
CVSSv3
CVE-2015-8765
Intel McAfee ePolicy Orchestrator (ePO) 4.6.9 and previous versions, 5.0.x, 5.1.x prior to 5.1.3 Hotfix 1106041, and 5.3.x prior to 5.3.1 Hotfix 1106041 allow remote malicious users to execute arbitrary code via a crafted serialized Java object, related to the Apache Commons Coll...
Mcafee Epolicy Orchestrator
8.2
CVSSv3
CVE-2023-46805
An authentication bypass vulnerability in the web component of Ivanti ICS 9.x, 22.x and Ivanti Policy Secure allows a remote malicious user to access restricted resources by bypassing control checks.
Ivanti Connect Secure 22.1
Ivanti Connect Secure 22.2
Ivanti Connect Secure 9.1
Ivanti Policy Secure 22.2
Ivanti Policy Secure 22.1
Ivanti Policy Secure 9.1
Ivanti Connect Secure 22.5
Ivanti Connect Secure 22.4
Ivanti Connect Secure 22.3
Ivanti Connect Secure 22.6
Ivanti Policy Secure 22.3
Ivanti Policy Secure 22.6
Ivanti Policy Secure 22.5
Ivanti Policy Secure 22.4
Ivanti Connect Secure 9.0
Ivanti Policy Secure 9.0
1 Metasploit module
16 Github repositories
10 Articles
8.2
CVSSv3
CVE-2022-1824
An uncontrolled search path vulnerability in McAfee Consumer Product Removal Tool prior to version 10.4.128 could allow a local malicious user to perform a sideloading attack by using a specific file name. This could result in the user gaining elevated permissions and being able ...
Mcafee Consumer Product Removal Tool
8.2
CVSSv3
CVE-2020-7334
Improper privilege assignment vulnerability in the installer McAfee Application and Change Control (MACC) before 8.3.2 allows local administrators to change or update the configuration settings via a carefully constructed MSI configured to mimic the genuine installer. This versio...
Mcafee Application And Change Control
8.2
CVSSv3
CVE-2019-3617
Privilege escalation vulnerability in McAfee Total Protection (ToPS) for Mac OS before 4.6 allows local users to gain root privileges via incorrect protection of temporary files.
Mcafee Total Protection
8.2
CVSSv3
CVE-2019-3622
Files or Directories Accessible to External Parties in McAfee Data Loss Prevention (DLPe) for Windows 11.x before 11.3.0 allows authenticated user to redirect DLPe log files to arbitrary locations via incorrect access control applied to the DLPe log folder allowing privileged use...
Mcafee Data Loss Prevention Endpoint
8.1
CVSSv3
CVE-2024-21412
Internet Shortcut Files Security Feature Bypass Vulnerability
Microsoft Windows 11 22h2
Microsoft Windows 10 21h2
Microsoft Windows Server 2022
Microsoft Windows Server 2019
Microsoft Windows Server 2022 23h2
Microsoft Windows 11 23h2
Microsoft Windows 11 21h2
Microsoft Windows 10 1809
Microsoft Windows 10 22h2
3 Github repositories
5 Articles
8.1
CVSSv3
CVE-2020-2604
Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Serialization). Supported versions that are affected are Java SE: 7u241, 8u231, 11.0.5 and 13.0.1; Java SE Embedded: 8u231. Difficult to exploit vulnerability allows unauthenticated attacker with...
Oracle Jre 1.8.0
Oracle Jdk 1.8.0
Oracle Jdk 1.7.0
Oracle Jdk 11.0.5
Oracle Jdk 13.0.1
Oracle Graalvm 19.3.0.2
Oracle Commerce Guided Search 11.3.2
Oracle Commerce Experience Manager 11.3.2
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Workstation 7.0
Redhat Enterprise Linux Server 7.0
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Workstation 6.0
Redhat Enterprise Linux 8.0
Redhat Enterprise Linux Server Aus 7.7
Redhat Enterprise Linux Server Tus 7.7
Redhat Enterprise Linux Eus 7.7
Redhat Enterprise Linux Eus 8.1
Oracle Openjdk 8
Oracle Openjdk 7
Oracle Openjdk
8.1
CVSSv3
CVE-2016-8023
Authentication bypass by assumed-immutable data vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and previous versions) allows remote unauthenticated malicious user to bypass server authentication via a crafted authentication cookie.
Mcafee Virusscan Enterprise
1 EDB exploit
1 Article
8.1
CVSSv3
CVE-2016-8024
Improper neutralization of CRLF sequences in HTTP headers vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and previous versions) allows remote unauthenticated malicious user to obtain sensitive information via the server HTTP response spoofing.
Mcafee Virusscan Enterprise
1 EDB exploit
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »