Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / mcafee

mcafee

602 tracked vulnerabilities.

CVE-2021-31845 HIGH

McAfee Data Loss Prevention Discover < 11.6.100 - Remote Code Execution via Crafted Ami Pro File

CVE-2021-31844 HIGH

McAfee Data Loss Prevention Endpoint < 11.6.200 - Local Privilege Escalation via Ami Pro File Parsing

CVE-2021-31843 HIGH

McAfee Endpoint Security < 10.7.0 - Improper Privilege Management via Junction Link Manipulation

CVE-2021-31842 MEDIUM

McAfee Endpoint Security < 10.7.0 - Denial of Service via XML Entity Expansion in EPDeploy.xml

CVE-2021-3712 HIGH

OpenSSL 1.0.2-1.0.2y 1.1.1-1.1.1k - Out-of-bounds Read in ASN.1 String Processing

CVE-2021-2432 LOW

Oracle JDK 7u301 - Unauthenticated Partial Denial of Service via JNDI

CVE-2021-33037 MEDIUM

Apache Tomcat <10.0.7-8.5.67 - Info Disclosure

CVE-2021-30639 HIGH

Apache Tomcat 10.0.3-10.0.4, 9.0.44, 8.5.64 - Denial of Service via Non-Blocking I/O Error Flag

CVE-2021-31838 HIGH

McAfee MVISION EDR < 3.4.0 - Authenticated OS Command Injection via Execute Reaction

CVE-2021-31840 HIGH

McAfee Agent for Windows < 5.7.3 - Authenticated DLL Preloading Attack via Unsigned DLLs

CVE-2021-31839 MEDIUM

McAfee Agent for Windows < 5.7.3 - Improper Privilege Management in Event Log

CVE-2021-31837 HIGH

McAfee GetSusp < 4.0.0 - Memory Corruption via Driver File Component

CVE-2021-31832 MEDIUM

McAfee Data Loss Prevention < 11.6.200 - Stored Cross-Site Scripting in Alert Configuration Text Field

CVE-2021-31830 MEDIUM

McAfee Database Security < 4.8.2 - Stored Cross-Site Scripting in Database Name Configuration

CVE-2021-31831 MEDIUM

McAfee DBSec <4.8.2 - Info Disclosure

CVE-2021-23896 LOW

McAfee Database Security < 4.8.2 - Cleartext Transmission of Sensitive Information in Administrator Interface

CVE-2021-23895 CRITICAL

McAfee Database Security < 4.8.2 - Authenticated Remote Code Execution via Java Deserialization

CVE-2021-23894 CRITICAL

McAfee Database Security < 4.8.2 - Unauthenticated Remote Code Execution via Java Deserialization

CVE-2021-23892 HIGH

McAfee Endpoint Security for Linux Threat Prevention 10.5.0-10.7.5 - Privilege Escalation via TOCTOU Race Condition

CVE-2021-23891 HIGH

McAfee Total Protection < 16.0.32 - Privilege Escalation via Client Token Impersonation

CVE-2021-23872 HIGH

McAfee Total Protection < 16.0.32 - Privilege Escalation via File Lock Symbolic Link Manipulation

CVE-2021-2161 MEDIUM

Oracle JDK and JRE - Unauthenticated Data Manipulation via Multiple Protocols

CVE-2021-23887 HIGH

McAfee Data Loss Prevention Endpoint < 11.6.100.41 - Privilege Escalation via hdlphook Driver Memory Manipulation

CVE-2021-23886 MEDIUM

McAfee Data Loss Prevention Endpoint < 11.6.100.41 - Denial of Service via Process Suspension and Memory Modification

CVE-2021-23884 MEDIUM

McAfee Content Security Reporter < 2.8.0 - Cleartext Transmission of Sensitive Information

Previous Page 3 of 25 Next

Products

epolicy_orchestrator 86 web_gateway 41 endpoint_security 37 network_data_loss_prevention 31 virusscan_enterprise 29 advanced_threat_defense 26 data_loss_prevention_endpoint 26 total_protection 26 agent 25 email_gateway 20 network_security_manager 19 gateway 13 data_loss_prevention 12 scan_engine 12 email_and_web_security 10 mcafee_agent 10 virusscan 10 antivirus_engine 9 enterprise_security_manager 9 policy_auditor 9 database_security 8 true_key 8 Network Data Loss Prevention (NDLP) 7 active_response 7 application_control 7 security_scan_plus 7 threat_intelligence_exchange_server 7 application_and_change_control 6 e-business_server 6 enterprise_mobility_manager 6

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy