Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
security vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2020-7261
Buffer Overflow via Environment Variables vulnerability in AMSI component in McAfee Endpoint Security (ENS) before 10.7.0 February 2020 Update allows local users to disable Endpoint Security via a carefully crafted user input.
Mcafee Endpoint Security 10.5.0
Mcafee Endpoint Security 10.5.1
Mcafee Endpoint Security 10.5.2
Mcafee Endpoint Security 10.5.3
Mcafee Endpoint Security 10.5.4
Mcafee Endpoint Security 10.5.5
Mcafee Endpoint Security 10.6.0
4.4
CVSSv3
CVE-2020-7255
Privilege escalation vulnerability in the administrative user interface in McAfee Endpoint Security (ENS) for Windows before 10.7.0 February 2020 Update allows local users to gain elevated privileges via ENS not checking user permissions when editing configuration in the ENS clie...
Mcafee Endpoint Security 10.5.0
Mcafee Endpoint Security 10.5.1
Mcafee Endpoint Security 10.5.2
Mcafee Endpoint Security 10.5.3
Mcafee Endpoint Security 10.5.4
Mcafee Endpoint Security 10.5.5
Mcafee Endpoint Security 10.6.0
7.8
CVSSv3
CVE-2020-7259
Exploitation of Privilege/Trust vulnerability in file in McAfee Endpoint Security (ENS) before 10.7.0 February 2020 Update allows local users to bypass local security protection via a carefully crafted input file
Mcafee Endpoint Security 10.5.0
Mcafee Endpoint Security 10.5.1
Mcafee Endpoint Security 10.5.2
Mcafee Endpoint Security 10.5.3
Mcafee Endpoint Security 10.5.4
Mcafee Endpoint Security 10.5.5
Mcafee Endpoint Security 10.6.0
7.8
CVSSv3
CVE-2020-7274
Privilege escalation vulnerability in McTray.exe in McAfee Endpoint Security (ENS) for Windows before 10.7.0 April 2020 Update allows local users to spawn unrelated processes with elevated privileges via the system administrator granting McTray.exe elevated privileges (by default...
Mcafee Endpoint Security 10.5.0
Mcafee Endpoint Security 10.5.1
Mcafee Endpoint Security 10.5.2
Mcafee Endpoint Security 10.5.3
Mcafee Endpoint Security 10.5.4
Mcafee Endpoint Security 10.5.5
Mcafee Endpoint Security 10.6.0
6.1
CVSSv3
CVE-2016-0246
Cross-site scripting (XSS) vulnerability in IBM Security Guardium 8.2 before p310, 9.x up to and including 9.5 before p700, and 10.x up to and including 10.1 before p100 allows remote malicious users to inject arbitrary web script or HTML via a crafted URL.
Ibm Security Guardium 9.1
Ibm Security Guardium 9.0
Ibm Security Guardium 10.1
Ibm Security Guardium 10.01
Ibm Security Guardium 8.2
Ibm Security Guardium 10.0
Ibm Security Guardium 9.5
7.8
CVSSv3
CVE-2016-0247
IBM Security Guardium 8.2 before p310, 9.x up to and including 9.5 before p700, and 10.x up to and including 10.1 before p100 allows local users to obtain sensitive cleartext information via unspecified vectors, as demonstrated by password information.
Ibm Security Guardium 9.1
Ibm Security Guardium 9.5
Ibm Security Guardium 10.1
Ibm Security Guardium 10.01
Ibm Security Guardium 10.0
Ibm Security Guardium 8.2
Ibm Security Guardium 9.0
NA
CVE-2004-2251
The PPTP server in Astaro Security Linux prior to 4.024 provides information about its version, which makes it easier for remote malicious users to construct specialized attacks.
Astaro Security Linux 4.020
Astaro Security Linux 4.021
Astaro Security Linux 4.022
Astaro Security Linux 4.023
Astaro Security Linux 4.017
Astaro Security Linux 4.018
Astaro Security Linux 4.019
7.5
CVSSv3
CVE-2017-1267
IBM Security Guardium 10.0 and 10.1 processes patches, image backups and other updates without sufficiently verifying the origin and integrity of the code. IBM X-Force ID: 124742.
Ibm Security Guardium 9.1
Ibm Security Guardium 10.1.2
Ibm Security Guardium 9.5
Ibm Security Guardium 10.0
Ibm Security Guardium 10.0.1
Ibm Security Guardium 10.1
Ibm Security Guardium 9.0
NA
CVE-2013-5635
Media Encryption EPM Explorer in Check Point Endpoint Security through E80.50 does not properly maintain the state of password failures, which makes it easier for physically proximate malicious users to bypass the device-locking protection mechanism by entering password guesses w...
Checkpoint Endpoint Security E80.40
Checkpoint Endpoint Security E80.41
Checkpoint Endpoint Security E80.50
Checkpoint Endpoint Security E80
Checkpoint Endpoint Security E80.20
Checkpoint Endpoint Security E80.10
Checkpoint Endpoint Security E80.30
NA
CVE-2013-5450
IBM Security AppScan Enterprise 8.5 up to and including 8.7.0.1, when Jazz authentication is enabled, allows man-in-the-middle malicious users to obtain sensitive information or modify data by leveraging an improperly protected URL to obtain a session token.
Ibm Security Appscan 8.7.0.0
Ibm Security Appscan 8.7.0.1
Ibm Security Appscan 8.5.0.0
Ibm Security Appscan 8.5.0.1
Ibm Security Appscan 8.6.0.0
Ibm Security Appscan 8.6.0.1
Ibm Security Appscan 8.6.0.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »