Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / mcafee

mcafee

602 tracked vulnerabilities.

CVE-2020-7336 MEDIUM

McAfee Network Security Management < 9.2.9.55 - Cross-Site Request Forgery

CVE-2020-7339 MEDIUM

McAfee Database Security < 4.8.0 - Use of a Broken or Risky Cryptographic Algorithm via SHA1 Signed Certificate

CVE-2020-7337 MEDIUM

McAfee VirusScan Enterprise < 8.8 Patch 16 - Local Security Bypass via Windows Defender Application Control

CVE-2020-7335 HIGH

McAfee Total Protection < 16.0.29 - Privilege Escalation via Junction Link Timing Attack

CVE-2020-7333 MEDIUM

McAfee Endpoint Security < 10.7.0 - Authenticated Cross-Site Scripting in Firewall ePO Extension Configuration Wizard

CVE-2020-7332 HIGH

McAfee Endpoint Security < 10.6.1 - Cross-Site Request Forgery in Firewall ePO Extension

CVE-2020-7331 HIGH

McAfee Endpoint Security < 10.6.1 - Unquoted Service Path Denial of Service and Malicious File Execution

CVE-2020-7329 HIGH

McAfee MVISION Endpoint < 20.11 - Server-Side Request Forgery via XML File Processing

CVE-2020-7328 HIGH

McAfee MVISION Endpoint < 20.11 - Server-Side Request Forgery via ePO Extension HTTP Request

CVE-2020-14792 MEDIUM

Oracle Java SE <15 - Info Disclosure

CVE-2020-14782 LOW

Oracle Java SE <15 - Unauthorized Update

CVE-2020-7327 MEDIUM

McAfee MVISION Endpoint Detection and Response Client < 3.2.0 - Authentication Bypass via Windows Service Manipulation

CVE-2020-7326 MEDIUM

McAfee Active Response < 2.4.4 - Authentication Bypass via Windows Service Manipulation

CVE-2020-7334 HIGH

McAfee Application and Change Control < 8.3.2 - Improper Privilege Assignment via MSI Installer

CVE-2020-7318 MEDIUM NUCLEI

McAfee ePolicy Orchestrator 5.10.0-5.10.8 - Authenticated Stored Cross-Site Scripting via Administrator Input Parameters

CVE-2020-7317 MEDIUM

McAfee ePolicy Orchestrator < 5.9.1 - Cross-Site Scripting via syncPointList Parameter

CVE-2020-7330 HIGH

McAfee Total Protection < 4.0.176.1 - Privilege Escalation via Environment Variable Manipulation

CVE-2020-7316 MEDIUM

McAfee File and Removable Media Protection < 5.3.0 - Unquoted Service Path Privilege Escalation

CVE-2020-7268 MEDIUM

McAfee Email Gateway < 7.6.406 - Path Traversal via External Input

CVE-2020-7297 MEDIUM

McAfee Web Gateway 7.8.0-7.8.2.22 - Authenticated Privilege Escalation via User Interface

CVE-2020-7296 MEDIUM

McAfee Web Gateway 7.8.0-7.8.2.23 - Authenticated Privilege Escalation via User Interface

CVE-2020-7295 LOW

McAfee Web Gateway 7.8.0-7.8.2.23 - Authenticated Privilege Escalation via Log Data Access Controls

CVE-2020-7294 MEDIUM

McAfee Web Gateway 7.8.0-7.8.2.23 - Authenticated Privilege Escalation via REST Interface

CVE-2020-7293 CRITICAL

McAfee Web Gateway 7.8.0-7.8.2.23 - Authenticated Privilege Escalation via User Interface

CVE-2020-7315 MEDIUM

McAfee Agent < 5.6.6 - DLL Injection via Untrusted Search Path

Previous Page 5 of 25 Next

Products

epolicy_orchestrator 86 web_gateway 41 endpoint_security 37 network_data_loss_prevention 31 virusscan_enterprise 29 advanced_threat_defense 26 data_loss_prevention_endpoint 26 total_protection 26 agent 25 email_gateway 20 network_security_manager 19 gateway 13 data_loss_prevention 12 scan_engine 12 email_and_web_security 10 mcafee_agent 10 virusscan 10 antivirus_engine 9 enterprise_security_manager 9 policy_auditor 9 database_security 8 true_key 8 Network Data Loss Prevention (NDLP) 7 active_response 7 application_control 7 security_scan_plus 7 threat_intelligence_exchange_server 7 application_and_change_control 6 e-business_server 6 enterprise_mobility_manager 6

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy