Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mcafee database security vulnerabilities and exploits
(subscribe to this query)
10
CVSSv3
CVE-2016-8027
SQL injection vulnerability in core services in Intel Security McAfee ePolicy Orchestrator (ePO) 5.3.2 and previous versions and 5.1.3 and previous versions allows malicious users to alter a SQL query, which can result in disclosure of information within the database or impersona...
Mcafee Epolicy Orchestrator
9.1
CVSSv3
CVE-2017-3968
Session fixation vulnerability in the web interface in McAfee Network Security Manager (NSM) prior to 8.2.7.42.2 and McAfee Network Data Loss Prevention (NDLP) prior to 9.3.4.1.5 allows remote malicious users to disclose sensitive information or manipulate the database via a craf...
Mcafee Network Security Manager
Mcafee Network Data Loss Prevention
8.8
CVSSv3
CVE-2021-23894
Deserialization of untrusted data vulnerability in McAfee Database Security (DBSec) before 4.8.2 allows a remote unauthenticated malicious user to create a reverse shell with administrator privileges on the DBSec server via carefully constructed Java serialized object sent to the...
Mcafee Database Security
8.8
CVSSv3
CVE-2017-3965
Cross-Site Request Forgery (CSRF) (aka Session Riding) vulnerability in the web interface in McAfee Network Security Management (NSM) prior to 8.2.7.42.2 allows remote malicious users to perform unauthorized tasks such as retrieving internal system information or manipulating the...
Mcafee Network Security Manager
8.8
CVSSv3
CVE-2015-8989
Unsalted password vulnerability in the Enterprise Manager (web portal) component in Intel Security McAfee Vulnerability Manager (MVM) 7.5.8 and previous versions allows malicious users to more easily decrypt user passwords via brute force attacks against the database.
Mcafee Vulnerability Manager
8.1
CVSSv3
CVE-2016-8023
Authentication bypass by assumed-immutable data vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and previous versions) allows remote unauthenticated malicious user to bypass server authentication via a crafted authentication cookie.
Mcafee Virusscan Enterprise
1 EDB exploit
1 Article
8.1
CVSSv3
CVE-2016-8024
Improper neutralization of CRLF sequences in HTTP headers vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and previous versions) allows remote unauthenticated malicious user to obtain sensitive information via the server HTTP response spoofing.
Mcafee Virusscan Enterprise
1 EDB exploit
1 Article
8
CVSSv3
CVE-2021-23895
Deserialization of untrusted data vulnerability in McAfee Database Security (DBSec) before 4.8.2 allows a remote authenticated malicious user to create a reverse shell with administrator privileges on the DBSec server via carefully constructed Java serialized object sent to the D...
Mcafee Database Security
8
CVSSv3
CVE-2016-8020
Improper control of generation of code vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and previous versions) allows remote authenticated users to execute arbitrary code via a crafted HTTP request parameter.
Mcafee Virusscan Enterprise
1 EDB exploit
1 Article
7.5
CVSSv3
CVE-2021-23840
Calls to EVP_CipherUpdate, EVP_EncryptUpdate and EVP_DecryptUpdate may overflow the output length argument in some cases where the input length is close to the maximum permissable length for an integer on the platform. In such cases the return value from the function call will be...
Openssl Openssl
Debian Debian Linux 10.0
Tenable Nessus Network Monitor 5.11.1
Tenable Nessus Network Monitor 5.12.0
Tenable Nessus Network Monitor 5.12.1
Tenable Nessus Network Monitor 5.13.0
Tenable Nessus Network Monitor 5.11.0
Tenable Log Correlation Engine
Oracle Business Intelligence 12.2.1.3.0
Oracle Jd Edwards World Security A9.4
Oracle Business Intelligence 12.2.1.4.0
Oracle Business Intelligence 5.5.0.0.0
Oracle Enterprise Manager For Storage Management 13.4.0.0
Oracle Enterprise Manager Ops Center 12.4.0.0
Oracle Graalvm 20.3.1.2
Oracle Graalvm 21.0.0.2
Oracle Graalvm 19.3.5
Oracle Mysql Server
Oracle Nosql Database
Oracle Jd Edwards Enterpriseone Tools
Oracle Business Intelligence 5.9.0.0.0
Oracle Communications Cloud Native Core Policy 1.15.0
1 Github repository
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4671
unauthorized
CVE-2024-4776
CVE-2024-3407
CVE-2024-26026
CVE-2024-32888
wireless
CVE-2024-4656
template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »