Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mcafee epolicy orchestrator vulnerabilities and exploits
(subscribe to this query)
440
VMScore
CVE-2015-0921
XML external entity (XXE) vulnerability in the Server Task Log in McAfee ePolicy Orchestrator (ePO) prior to 4.6.9 and 5.x prior to 5.1.2 allows remote authenticated users to read arbitrary files via the conditionXML parameter to the taskLogTable to orionUpdateTableFilter.do.
Mcafee Epolicy Orchestrator 5.0.0
Mcafee Epolicy Orchestrator 5.1.0
Mcafee Epolicy Orchestrator 5.1.1
Mcafee Epolicy Orchestrator 5.0.1
Mcafee Epolicy Orchestrator
540
VMScore
CVE-2015-0922
McAfee ePolicy Orchestrator (ePO) prior to 4.6.9 and 5.x prior to 5.1.2 uses the same secret key across different customers' installations, which allows malicious users to obtain the administrator password by leveraging knowledge of the encrypted password.
Mcafee Epolicy Orchestrator 5.0.0
Mcafee Epolicy Orchestrator 5.1.0
Mcafee Epolicy Orchestrator 5.1.1
Mcafee Epolicy Orchestrator 5.0.1
Mcafee Epolicy Orchestrator
561
VMScore
CVE-2014-2205
The Import and Export Framework in McAfee ePolicy Orchestrator (ePO) prior to 4.6.7 Hotfix 940148 allows remote authenticated users with permissions to add dashboards to read arbitrary files by importing a crafted XML file, related to an XML External Entity (XXE) issue.
Mcafee Epolicy Orchestrator 4.6.0
Mcafee Epolicy Orchestrator 4.6.5
Mcafee Epolicy Orchestrator 4.6.3
Mcafee Epolicy Orchestrator
Mcafee Epolicy Orchestrator 4.6.2
Mcafee Epolicy Orchestrator 4.6.4
Mcafee Epolicy Orchestrator 4.6.6
Mcafee Epolicy Orchestrator 4.6.1
655
VMScore
CVE-2013-4882
Multiple SQL injection vulnerabilities in McAfee ePolicy Orchestrator 4.6.6 and previous versions, and the ePolicy Orchestrator (ePO) extension for McAfee Agent (MA) 4.5 and 4.6, allow remote authenticated users to execute arbitrary SQL commands via the uid parameter to (1) core/...
Mcafee Epolicy Orchestrator 4.6.0
Mcafee Epolicy Orchestrator 4.6.5
Mcafee Epolicy Orchestrator Agent 4.6
Mcafee Epolicy Orchestrator 4.6.3
Mcafee Epolicy Orchestrator
Mcafee Epolicy Orchestrator Agent 4.5
Mcafee Epolicy Orchestrator 4.6.2
Mcafee Epolicy Orchestrator 4.6.4
Mcafee Epolicy Orchestrator 4.6.1
1 EDB exploit
435
VMScore
CVE-2013-4883
Multiple cross-site scripting (XSS) vulnerabilities in McAfee ePolicy Orchestrator 4.6.6 and previous versions, and the ePO Extension for the McAfee Agent (MA) 4.5 up to and including 4.6, allow remote malicious users to inject arbitrary web script or HTML via the (1) instanceId ...
Mcafee Epolicy Orchestrator 4.6.0
Mcafee Epolicy Orchestrator 4.6.5
Mcafee Epolicy Orchestrator Agent 4.6
Mcafee Epolicy Orchestrator 4.6.3
Mcafee Epolicy Orchestrator
Mcafee Epolicy Orchestrator Agent 4.5
Mcafee Epolicy Orchestrator 4.6.2
Mcafee Epolicy Orchestrator 4.6.4
Mcafee Epolicy Orchestrator 4.6.1
1 EDB exploit
383
VMScore
CVE-2013-0141
Directory traversal vulnerability in McAfee ePolicy Orchestrator (ePO) prior to 4.5.7 and 4.6.x prior to 4.6.6 allows remote malicious users to upload arbitrary files via a crafted request over the Agent-Server communication channel, as demonstrated by writing to the Software/ di...
Mcafee Epolicy Orchestrator 2.5.1
Mcafee Epolicy Orchestrator 4.5.4
Mcafee Epolicy Orchestrator 3.0
Mcafee Epolicy Orchestrator
Mcafee Epolicy Orchestrator 2.5
Mcafee Epolicy Orchestrator 4.5.0
Mcafee Epolicy Orchestrator 4.0
Mcafee Epolicy Orchestrator 3.6.0
Mcafee Epolicy Orchestrator 4.5.5
Mcafee Epolicy Orchestrator 3.5.0
Mcafee Epolicy Orchestrator 2.0
Mcafee Epolicy Orchestrator 4.5.3
Mcafee Epolicy Orchestrator 3.6.1
Mcafee Epolicy Orchestrator 4.6.0
Mcafee Epolicy Orchestrator 4.6.5
Mcafee Epolicy Orchestrator 4.6.3
Mcafee Epolicy Orchestrator 4.6.2
Mcafee Epolicy Orchestrator 4.6.4
Mcafee Epolicy Orchestrator 4.6.1
1 Github repository
795
VMScore
CVE-2013-0140
SQL injection vulnerability in the Agent-Handler component in McAfee ePolicy Orchestrator (ePO) prior to 4.5.7 and 4.6.x prior to 4.6.6 allows remote malicious users to execute arbitrary SQL commands via a crafted request over the Agent-Server communication channel.
Mcafee Epolicy Orchestrator 2.5.1
Mcafee Epolicy Orchestrator 4.5.4
Mcafee Epolicy Orchestrator 3.0
Mcafee Epolicy Orchestrator
Mcafee Epolicy Orchestrator 2.5
Mcafee Epolicy Orchestrator 4.5.0
Mcafee Epolicy Orchestrator 4.0
Mcafee Epolicy Orchestrator 3.6.0
Mcafee Epolicy Orchestrator 4.5.5
Mcafee Epolicy Orchestrator 3.5.0
Mcafee Epolicy Orchestrator 2.0
Mcafee Epolicy Orchestrator 4.5.3
Mcafee Epolicy Orchestrator 3.6.1
Mcafee Epolicy Orchestrator 4.6.0
Mcafee Epolicy Orchestrator 4.6.5
Mcafee Epolicy Orchestrator 4.6.3
Mcafee Epolicy Orchestrator 4.6.2
Mcafee Epolicy Orchestrator 4.6.4
Mcafee Epolicy Orchestrator 4.6.1
1 EDB exploit
1 Github repository
356
VMScore
CVE-2012-4594
McAfee ePolicy Orchestrator (ePO) 4.6.1 and previous versions allows remote authenticated users to bypass intended access restrictions, and obtain sensitive information from arbitrary reporting panels, via a modified ID value in a console URL.
Mcafee Epolicy Orchestrator 2.5.1
Mcafee Epolicy Orchestrator 4.6.0
Mcafee Epolicy Orchestrator 3.0
Mcafee Epolicy Orchestrator 2.5
Mcafee Epolicy Orchestrator
Mcafee Epolicy Orchestrator 4.5.0
Mcafee Epolicy Orchestrator 4.0
Mcafee Epolicy Orchestrator 3.6.0
Mcafee Epolicy Orchestrator 3.5.0
Mcafee Epolicy Orchestrator 2.0
Mcafee Epolicy Orchestrator 3.6.1
505
VMScore
CVE-2008-1855
FrameworkService.exe in McAfee Common Management Agent (CMA) 3.6.0.574 Patch 3 and previous versions, as used by ePolicy Orchestrator (ePO) and ProtectionPilot (PrP), allows remote malicious users to corrupt memory and cause a denial of service (CMA Framework service crash) via a...
Mcafee Cma
1 EDB exploit
545
VMScore
CVE-2008-1357
Format string vulnerability in the logDetail function of applib.dll in McAfee Common Management Agent (CMA) 3.6.0.574 (Patch 3) and previous versions, as used in ePolicy Orchestrator 4.0.0 build 1015, allows remote malicious users to cause a denial of service (crash) or execute a...
Mcafee Mcafee Framework 3.6.569
Mcafee Cma 3.6.453
Mcafee Cma 3.0.6.453
Mcafee Epolicy Orchestrator 4.0
Mcafee Cma 3.5.5.438
Mcafee Agent 4.0
Mcafee Cma 3.6.574
Mcafee Cma 3.6.438
Mcafee Cma 3.6.546
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »