Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mcafee vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2017-3896
Unvalidated parameter vulnerability in the remote log viewing capability in Intel Security McAfee Agent 5.0.x versions before 5.0.4.449 allows remote malicious users to pass unexpected input parameters via a URL that was not completely validated.
Mcafee Mcafee Agent 5.0.2
Mcafee Mcafee Agent 5.0.3
Mcafee Mcafee Agent 5.0.4
Mcafee Mcafee Agent 5.0.0
Mcafee Mcafee Agent 5.0.1
8.2
CVSSv2
CVE-2012-5879
An ActiveX control in McHealthCheck.dll in McAfee Virtual Technician (MVT) and ePO-MVT 6.5.0.2101 and previous versions allows remote malicious users to modify or create arbitrary files via a full pathname argument to the Save method.
Mcafee Mcafee Virtual Technician
Mcafee Mcafee Virtual Technician 6.3.0.1911
Mcafee Epo Mcafee Virtual Technician 1.0.8
Mcafee Epo Mcafee Virtual Technician 1.0
Mcafee Epo Mcafee Virtual Technician 1.0.9
Mcafee Epo Mcafee Virtual Technician 1.0.4.0
Mcafee Epo Mcafee Virtual Technician 1.0.7
Mcafee Epo Mcafee Virtual Technician
1 EDB exploit
9.3
CVSSv2
CVE-2015-8024
McAfee Enterprise Security Manager (ESM), Enterprise Security Manager/Log Manager (ESMLM), and Enterprise Security Manager/Receiver (ESMREC) 9.3.x prior to 9.3.2MR19, 9.4.x prior to 9.4.2MR9, and 9.5.x prior to 9.5.0MR8, when configured to use Active Directory or LDAP authenticat...
Mcafee Mcafee Enterprise Security Manager 9.3.2
Mcafee Mcafee Enterprise Security Manager 9.3.1
Mcafee Mcafee Enterprise Security Manager 9.3.0
Mcafee Mcafee Enterprise Security Manager 9.4.0
Mcafee Mcafee Enterprise Security Manager 9.4.1
Mcafee Mcafee Enterprise Security Manager 9.4.2
Mcafee Mcafee Enterprise Security Manager 9.5.0
1 Article
2.1
CVSSv2
CVE-2017-4028
Maliciously misconfigured registry vulnerability in all Microsoft Windows products in McAfee consumer and corporate products allows an administrator to inject arbitrary code into a debugged McAfee process via manipulation of registry parameters.
Mcafee Anti-virus Plus -
Mcafee Endpoint Security 10.2
Mcafee Host Intrusion Prevention
Mcafee Host Intrusion Prevention 8.0
Mcafee Internet Security -
Mcafee Total Protection -
Mcafee Virus Scan Enterprise
Mcafee Virus Scan Enterprise 8.8
9.3
CVSSv2
CVE-2012-4598
An unspecified ActiveX control in McAfee Virtual Technician (MVT) prior to 6.4, and ePO-MVT, allows remote malicious users to execute arbitrary code or cause a denial of service (Internet Explorer crash) via a crafted web site.
Mcafee Mcafee Virtual Technician
Mcafee Epo Mcafee Virtual Technician 1.0
Mcafee Epo Mcafee Virtual Technician 1.0.4.0
Mcafee Epo Mcafee Virtual Technician
2 EDB exploits
5.4
CVSSv2
CVE-2008-1357
Format string vulnerability in the logDetail function of applib.dll in McAfee Common Management Agent (CMA) 3.6.0.574 (Patch 3) and previous versions, as used in ePolicy Orchestrator 4.0.0 build 1015, allows remote malicious users to cause a denial of service (crash) or execute a...
Mcafee Cma 3.6.574
Mcafee Epolicy Orchestrator 4.0
Mcafee Cma 3.5.5.438
Mcafee Cma 3.6.438
Mcafee Agent 4.0
Mcafee Cma 3.0.6.453
Mcafee Mcafee Framework 3.6.569
Mcafee Cma 3.6.453
Mcafee Cma 3.6.546
1 EDB exploit
4.3
CVSSv2
CVE-2015-2053
The log viewer in McAfee Agent (MA) prior to 4.8.0 Patch 3 and 5.0.0, when the "Accept connections only from the ePO server" option is disabled, allows remote malicious users to conduct clickjacking attacks via a crafted web page, aka an "http-generic-click-jacking...
Mcafee Mcafee Agent
Mcafee Mcafee Agent 5.0.0
6.8
CVSSv2
CVE-2006-3961
Buffer overflow in McSubMgr ActiveX control (mcsubmgr.dll) in McAfee Security Center 6.0.23 for Internet Security Suite 2006, Wireless Home Network Security, Personal Firewall Plus, VirusScan, Privacy Service, SpamKiller, AntiSpyware, and QuickClean allows remote user-assisted ma...
Mcafee Internet Security Suite 2005
Mcafee Internet Security Suite 2006
Mcafee Quickclean 2004
Mcafee Quickclean 2005
Mcafee Spamkiller 6.0
Mcafee Spamkiller 7.0
Mcafee Virusscan 2004
Mcafee Personal Firewall Plus 2004
Mcafee Personal Firewall Plus 2005
Mcafee Quickclean 2006
Mcafee Security Center 4.3
Mcafee Antispyware 2005
Mcafee Personal Firewall Plus 2006
Mcafee Privacy Service 2004
Mcafee Security Center 6.0
Mcafee Security Center 6.0.22
Mcafee Wireless Home Network Security 2006
Mcafee Virusscan 2005
Mcafee Virusscan 2006
Mcafee Antispyware 2006
Mcafee Internet Security Suite 2004
Mcafee Privacy Service 2005
1 EDB exploit
7.9
CVSSv2
CVE-2013-0140
SQL injection vulnerability in the Agent-Handler component in McAfee ePolicy Orchestrator (ePO) prior to 4.5.7 and 4.6.x prior to 4.6.6 allows remote malicious users to execute arbitrary SQL commands via a crafted request over the Agent-Server communication channel.
Mcafee Epolicy Orchestrator 3.6.1
Mcafee Epolicy Orchestrator 3.6.0
Mcafee Epolicy Orchestrator 2.0
Mcafee Epolicy Orchestrator 4.5.5
Mcafee Epolicy Orchestrator 3.0
Mcafee Epolicy Orchestrator 2.5
Mcafee Epolicy Orchestrator 3.5.0
Mcafee Epolicy Orchestrator 4.5.4
Mcafee Epolicy Orchestrator 4.5.3
Mcafee Epolicy Orchestrator
Mcafee Epolicy Orchestrator 4.5.0
Mcafee Epolicy Orchestrator 4.0
Mcafee Epolicy Orchestrator 2.5.1
Mcafee Epolicy Orchestrator 4.6.4
Mcafee Epolicy Orchestrator 4.6.3
Mcafee Epolicy Orchestrator 4.6.0
Mcafee Epolicy Orchestrator 4.6.2
Mcafee Epolicy Orchestrator 4.6.1
Mcafee Epolicy Orchestrator 4.6.5
1 EDB exploit
1 Github repository
4.3
CVSSv2
CVE-2013-0141
Directory traversal vulnerability in McAfee ePolicy Orchestrator (ePO) prior to 4.5.7 and 4.6.x prior to 4.6.6 allows remote malicious users to upload arbitrary files via a crafted request over the Agent-Server communication channel, as demonstrated by writing to the Software/ di...
Mcafee Epolicy Orchestrator 3.6.0
Mcafee Epolicy Orchestrator 3.5.0
Mcafee Epolicy Orchestrator 4.5.5
Mcafee Epolicy Orchestrator 4.5.4
Mcafee Epolicy Orchestrator 4.0
Mcafee Epolicy Orchestrator 3.6.1
Mcafee Epolicy Orchestrator 2.5
Mcafee Epolicy Orchestrator 2.0
Mcafee Epolicy Orchestrator 4.5.0
Mcafee Epolicy Orchestrator 2.5.1
Mcafee Epolicy Orchestrator 3.0
Mcafee Epolicy Orchestrator 4.5.3
Mcafee Epolicy Orchestrator
Mcafee Epolicy Orchestrator 4.6.4
Mcafee Epolicy Orchestrator 4.6.3
Mcafee Epolicy Orchestrator 4.6.1
Mcafee Epolicy Orchestrator 4.6.5
Mcafee Epolicy Orchestrator 4.6.0
Mcafee Epolicy Orchestrator 4.6.2
1 Github repository
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »