mcafee

602 tracked vulnerabilities.

CVE-2018-6682 MEDIUM
McAfee True Key < 4.0.0.0 - Cross-Site Scripting via Crafted Website
Sep 24, 2018
CVSS 6.1
EPSS 0.00
CVE-2018-6690 HIGH
McAfee Application and Change Control <= 8.0.0 Hotfix 4 - Authenticated Arbitrary Code Execution via File Transfer
Sep 18, 2018
CVSS 7.1
EPSS 0.00
CVE-2018-6693 MEDIUM
McAfee Endpoint Security for Linux Threat Prevention <=10.5.1 - Unauthenticated Arbitrary File Deletion via TOCTOU
Sep 18, 2018
CVSS 5.3
EPSS 0.00
CVE-2018-6686 MEDIUM
McAfee Drive Encryption >= 7.1.0 - Authentication Bypass via TPM Autoboot
Jul 27, 2018
CVSS 6.6
EPSS 0.00
CVE-2018-6683 HIGH
McAfee Data Loss Prevention Endpoint < 10.0.505 - Local Policy Bypass via Local Policy File Editing
Jul 23, 2018
CVSS 7.4
EPSS 0.00
CVE-2018-6678 CRITICAL
McAfee Web Gateway <7.8.1 - Command Injection
Jul 23, 2018
CVSS 9.1
EPSS 0.00
CVE-2018-6677 CRITICAL
McAfee Web Gateway 7.8.1.x - Authenticated Directory Traversal
Jul 23, 2018
CVSS 9.1
EPSS 0.01
CVE-2018-6681 MEDIUM
McAfee Network Security Manager < 9.1.7.11 - Authenticated Reflected Cross-Site Scripting via Appliance Web Interface
Jul 17, 2018
CVSS 5.4
EPSS 0.00
CVE-2018-6667 CRITICAL
McAfee Web Gateway 7.8.1.0-7.8.1.5 - Authentication Bypass via JMX
Jun 26, 2018
CVSS 10.0
EPSS 0.02
CVE-2018-6672 MEDIUM
McAfee ePolicy Orchestrator 5.3.0-5.3.3 and 5.9.0-5.9.1 - Authenticated Sensitive Information Exposure
Jun 15, 2018
CVSS 5.7
EPSS 0.01
CVE-2018-6671 MEDIUM
McAfee ePolicy Orchestrator <5.3.3, <5.9.1 - Auth Bypass
Jun 15, 2018
CVSS 4.7
EPSS 0.01
CVE-2018-6670 HIGH
McAfee Common UI < 2.0.3 - Authenticated XML External Entity Injection
Jun 07, 2018
CVSS 7.6
EPSS 0.00
CVE-2018-6662 HIGH
McAfee Management of Native Encryption < 4.1.4 - Privilege Escalation via Crafted User Input
Jun 05, 2018
CVSS 7.8
EPSS 0.00
CVE-2018-6674 MEDIUM
McAfee VirusScan Enterprise < 8.8 Patch 13 - Privilege Escalation via McTray.exe
May 25, 2018
CVSS 6.8
EPSS 0.00
CVE-2018-6664 MEDIUM
McAfee Data Loss Prevention Endpoint < 10.0.500 - Authenticated Application Protections Bypass via Command-Line Utility
May 25, 2018
CVSS 5.8
EPSS 0.00
CVE-2018-10381 CRITICAL
TunnelBear 3.2.0.6 - Privilege Escalation
Apr 26, 2018
CVSS 9.8
EPSS 0.00
CVE-2018-6659 LOW
McAfee ePolicy Orchestrator 5.3.0-5.3.2 and 5.9.0 - Authenticated Reflected Cross-Site Scripting
Apr 02, 2018
CVSS 3.7
EPSS 0.00
CVE-2018-6661 HIGH
McAfee True Key < 4.20 - DLL Side-Loading via Unverified DLL Signature
Apr 02, 2018
CVSS 7.8
EPSS 0.00
CVE-2018-6660 MEDIUM
McAfee ePolicy Orchestrator 5.3.0-5.3.2 and 5.9.0 - Path Traversal via Windows Alternate Data Streams
Apr 02, 2018
CVSS 6.2
EPSS 0.01
CVE-2017-3912 MEDIUM
McAfee MACC <7.0.1,6.2.0 - Command Injection
Sep 18, 2018
CVSS 4.4
EPSS 0.00
CVE-2017-3936 MEDIUM
McAfee ePolicy Orchestrator <5.9.0-5.1.0 - Command Injection
Jun 13, 2018
CVSS 6.2
EPSS 0.05
CVE-2017-3907 MEDIUM
McAfee TIE Server <2.1.0 - Code Injection
Jun 13, 2018
CVSS 5.4
EPSS 0.00
CVE-2017-3968 HIGH
McAfee NSM <8.2.7.42.2, NDLP <9.3.4.1.5 - Info Disclosure
Jun 13, 2018
CVSS 7.5
EPSS 0.00
CVE-2017-3962 MEDIUM
McAfee NSM <8.2.7.42.2 - Info Disclosure
Jun 12, 2018
CVSS 5.6
EPSS 0.00
CVE-2017-3960 MEDIUM
McAfee NSM <8.2.7.42.2 - Privilege Escalation
Jun 12, 2018
CVSS 5.9
EPSS 0.00
Products
epolicy_orchestrator 86 web_gateway 41 endpoint_security 37 network_data_loss_prevention 31 virusscan_enterprise 29 advanced_threat_defense 26 data_loss_prevention_endpoint 26 total_protection 26 agent 25 email_gateway 20 network_security_manager 19 gateway 13 data_loss_prevention 12 scan_engine 12 email_and_web_security 10 mcafee_agent 10 virusscan 10 antivirus_engine 9 enterprise_security_manager 9 policy_auditor 9 database_security 8 true_key 8 Network Data Loss Prevention (NDLP) 7 active_response 7 application_control 7 security_scan_plus 7 threat_intelligence_exchange_server 7 application_and_change_control 6 e-business_server 6 enterprise_mobility_manager 6
Quick Filters
Critical CVEs With Exploits In CISA KEV