Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mcafee epolicy orchestrator vulnerabilities and exploits
(subscribe to this query)
1000
VMScore
CVE-2006-5156
Buffer overflow in McAfee ePolicy Orchestrator prior to 3.5.0.720 and ProtectionPilot prior to 1.1.1.126 allows remote malicious users to execute arbitrary code via a request to /spipe/pkg/ with a long source header.
Mcafee Protectionpilot 1.1.1
Mcafee Epolicy Orchestrator 3.0
Mcafee Epolicy Orchestrator 3.5.0
2 EDB exploits
890
VMScore
CVE-2002-0690
Format string vulnerability in McAfee Security ePolicy Orchestrator (ePO) 2.5.1 allows remote malicious users to execute arbitrary code via an HTTP GET request with a URI containing format strings.
Mcafee Epolicy Orchestrator 2.5.1
828
VMScore
CVE-2007-1498
Multiple stack-based buffer overflows in the SiteManager.SiteMgr.1 ActiveX control (SiteManager.dll) in the ePO management console in McAfee ePolicy Orchestrator (ePO) prior to 3.6.1 Patch 1 and ProtectionPilot (PRP) prior to 1.5.0 HotFix allow remote malicious users to execute a...
Mcafee Epolicy Orchestrator 3.5.0
Mcafee Epolicy Orchestrator 3.6.0
Mcafee Epolicy Orchestrator 3.6.1
Mcafee Protectionpilot 1.1.1
Mcafee Protectionpilot 1.5.0
795
VMScore
CVE-2013-0140
SQL injection vulnerability in the Agent-Handler component in McAfee ePolicy Orchestrator (ePO) prior to 4.5.7 and 4.6.x prior to 4.6.6 allows remote malicious users to execute arbitrary SQL commands via a crafted request over the Agent-Server communication channel.
Mcafee Epolicy Orchestrator 3.6.1
Mcafee Epolicy Orchestrator 3.6.0
Mcafee Epolicy Orchestrator 2.0
Mcafee Epolicy Orchestrator 4.5.5
Mcafee Epolicy Orchestrator 3.0
Mcafee Epolicy Orchestrator 2.5
Mcafee Epolicy Orchestrator 3.5.0
Mcafee Epolicy Orchestrator 4.5.4
Mcafee Epolicy Orchestrator 4.5.3
Mcafee Epolicy Orchestrator
Mcafee Epolicy Orchestrator 4.5.0
Mcafee Epolicy Orchestrator 4.0
Mcafee Epolicy Orchestrator 2.5.1
Mcafee Epolicy Orchestrator 4.6.4
Mcafee Epolicy Orchestrator 4.6.3
Mcafee Epolicy Orchestrator 4.6.0
Mcafee Epolicy Orchestrator 4.6.2
Mcafee Epolicy Orchestrator 4.6.1
Mcafee Epolicy Orchestrator 4.6.5
1 EDB exploit
1 Github repository
676
VMScore
CVE-2006-5273
Heap-based buffer overflow in McAfee ePolicy Orchestrator 3.5 up to and including 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.5.5.438 up to and including 3.6.0.453 allows remote malicious users to execute arbitrary code via a crafted packet.
Mcafee Protectionpilot 1.1.1
Mcafee Protectionpilot 1.5.0
Mcafee Common Management Agent
Mcafee Common Management Agent 3.6.0.438
Mcafee E-business Server 3.5
Mcafee E-business Server 3.6.1
676
VMScore
CVE-2006-5274
Integer overflow in McAfee ePolicy Orchestrator 3.5 up to and including 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.5.5.438 allows remote malicious users to cause a denial of service (CMA Framework service crash) and possibly execute arbitrary code v...
Mcafee Common Management Agent 3.6.0.438
Mcafee Protectionpilot 1.5.0
Mcafee Epolicy Orchestrator 3.5.0
Mcafee Epolicy Orchestrator 3.6.0
Mcafee Protectionpilot 1.1.1
676
VMScore
CVE-2006-5271
Integer underflow in McAfee ePolicy Orchestrator 3.5 up to and including 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.6.0.453 and previous versions allows remote malicious users to execute arbitrary code via a crafted UDP packet, which causes stack co...
Mcafee E-business Server 3.6.1
Mcafee Protectionpilot 1.1.1
Mcafee Protectionpilot 1.5.0
Mcafee E-business Server 3.5
670
VMScore
CVE-2015-8765
Intel McAfee ePolicy Orchestrator (ePO) 4.6.9 and previous versions, 5.0.x, 5.1.x prior to 5.1.3 Hotfix 1106041, and 5.3.x prior to 5.3.1 Hotfix 1106041 allow remote malicious users to execute arbitrary code via a crafted serialized Java object, related to the Apache Commons Coll...
Mcafee Epolicy Orchestrator
668
VMScore
CVE-2017-3907
Code Injection vulnerability in the ePolicy Orchestrator (ePO) extension in McAfee Threat Intelligence Exchange (TIE) Server 2.1.0 and previous versions allows remote malicious users to execute arbitrary HTML code to be reflected in the response web page via unspecified vector.
Mcafee Mcafee Threat Intelligence Exchange 2.1.0
668
VMScore
CVE-2017-3936
OS Command Injection vulnerability in McAfee ePolicy Orchestrator (ePO) 5.9.0, 5.3.2, 5.3.1, 5.1.3, 5.1.2, 5.1.1, and 5.1.0 allows malicious users to run arbitrary OS commands with limited privileges via not sanitizing the user input data before exporting it into a CSV format out...
Mcafee Epolicy Orchestrator 5.1.0
Mcafee Epolicy Orchestrator 5.1.3
Mcafee Epolicy Orchestrator 5.1.1
Mcafee Epolicy Orchestrator 5.1.2
Mcafee Epolicy Orchestrator 5.3.1
Mcafee Epolicy Orchestrator 5.3.2
Mcafee Epolicy Orchestrator 5.9.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »