Mcafee

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2018-6687 1Mcafee 1Getsusp Nov 21, 2024 Feb 21, 2019 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 Loop with Unreachable Exit Condition ('Infinite Loop') in McAfee GetSusp (GetSusp) 3.0.0.461 and earlier allows attackers to DoS a manual GetSusp scan via while scanning a specifically crafted file . GetSusp is a free st...Show more Loop with Unreachable Exit Condition ('Infinite Loop') in McAfee GetSusp (GetSusp) 3.0.0.461 and earlier allows attackers to DoS a manual GetSusp scan via while scanning a specifically crafted file . GetSusp is a free standalone McAfee tool that runs on several versions of Microsoft Windows.Show less
CVE-2019-3610 1Mcafee 1True Key Nov 21, 2024 Feb 13, 2019 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 Data Leakage Attacks vulnerability in Microsoft Windows client in McAfee True Key (TK) 3.1.9211.0 and earlier allows local users to expose confidential data via specially crafted malware.
CVE-2019-3604 1Mcafee 1Epolicy Orchestrator Nov 21, 2024 Feb 1, 2019 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 Cross-Site Request Forgery (CSRF) vulnerability in McAfee ePO (legacy) Cloud allows unauthenticated users to perform unintended ePO actions using an authenticated user's session via unspecified vectors.
CVE-2019-3593 1Mcafee 1Total Protection Nov 21, 2024 Jan 28, 2019 N/A· v4 7.1 HIGH· v3 5.6 MEDIUM· v2 Exploitation of Privilege/Trust vulnerability in Microsoft Windows client in McAfee Total Protection (MTP) Prior to 16.0.R18 allows local users to bypass product self-protection, tamper with policies and product files, a...Show more Exploitation of Privilege/Trust vulnerability in Microsoft Windows client in McAfee Total Protection (MTP) Prior to 16.0.R18 allows local users to bypass product self-protection, tamper with policies and product files, and uninstall McAfee software without permission via specially crafted malware.Show less
CVE-2019-3587 1Mcafee 1Total Protection Nov 21, 2024 Jan 23, 2019 N/A· v4 6.5 MEDIUM· v3 6.8 MEDIUM· v2 DLL Search Order Hijacking vulnerability in Microsoft Windows client in McAfee Total Protection (MTP) Prior to 16.0.18 allows local users to execute arbitrary code via execution from a compromised folder.
CVE-2019-3584 1Mcafee 1Mvision Endpoint Nov 21, 2024 Jan 23, 2019 N/A· v4 6.0 MEDIUM· v3 3.6 LOW· v2 Exploitation of Authentication vulnerability in MVision Endpoint in McAfee MVision Endpoint Prior to 1811 Update 1 (18.11.31.62) allows authenticated administrator users --> administrators to Remove MVision Endpoint via...Show more Exploitation of Authentication vulnerability in MVision Endpoint in McAfee MVision Endpoint Prior to 1811 Update 1 (18.11.31.62) allows authenticated administrator users --> administrators to Remove MVision Endpoint via unspecified vectors.Show less
CVE-2019-3581 1Mcafee 1Mcafee Web Gateway Nov 21, 2024 Jan 9, 2019 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 Improper input validation in the proxy component of McAfee Web Gateway 7.8.2.0 and later allows remote attackers to cause a denial of service via a crafted HTTP request parameter.
CVE-2018-6668 1Mcafee 1Application Change Control Nov 21, 2024 Dec 31, 2018 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 A whitelist bypass vulnerability in McAfee Application Control / Change Control 7.0.1 and before allows execution bypass, for example, with simple DLL through interpreters such as PowerShell.
CVE-2018-6669 1Mcafee 1Application Change Control Nov 21, 2024 Dec 20, 2018 N/A· v4 8.0 HIGH· v3 5.2 MEDIUM· v2 A whitelist bypass vulnerability in McAfee Application Control / Change Control 7.0.1 and before allows a remote or local user to execute blacklisted files through an ASP.NET form.
CVE-2018-6707 1Mcafee 1Agent Nov 21, 2024 Dec 14, 2018 N/A· v4 7.0 HIGH· v3 4.4 MEDIUM· v2 Denial of Service through Resource Depletion vulnerability in the agent in non-Windows McAfee Agent (MA) 5.0.0 through 5.0.6, 5.5.0, and 5.5.1 allows local users to cause DoS, unexpected behavior, or potentially unauthor...Show more Denial of Service through Resource Depletion vulnerability in the agent in non-Windows McAfee Agent (MA) 5.0.0 through 5.0.6, 5.5.0, and 5.5.1 allows local users to cause DoS, unexpected behavior, or potentially unauthorized code execution via knowledge of the internal trust mechanism.Show less
CVE-2018-6706 1Mcafee 1Agent Nov 21, 2024 Dec 12, 2018 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 Insecure handling of temporary files in non-Windows McAfee Agent 5.0.0 through 5.0.6, 5.5.0, and 5.5.1 allows an Unprivileged User to introduce custom paths during agent installation in Linux via unspecified vectors.
CVE-2018-6705 1Mcafee 1Agent Nov 21, 2024 Dec 12, 2018 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 Privilege escalation vulnerability in McAfee Agent (MA) for Linux 5.0.0 through 5.0.6, 5.5.0, and 5.5.1 allows local users to perform arbitrary command execution via specific conditions.
CVE-2018-6704 1Mcafee 1Agent Nov 21, 2024 Dec 12, 2018 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 Privilege escalation vulnerability in McAfee Agent (MA) for Linux 5.0.0 through 5.0.6, 5.5.0, and 5.5.1 allows local users to perform arbitrary command execution via specific conditions.
CVE-2018-6703 1Mcafee 1Agent Nov 21, 2024 Dec 11, 2018 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Use After Free in Remote logging (which is disabled by default) in McAfee McAfee Agent (MA) 5.x prior to 5.6.0 allows remote unauthenticated attackers to cause a Denial of Service and potentially a remote code execution...Show more Use After Free in Remote logging (which is disabled by default) in McAfee McAfee Agent (MA) 5.x prior to 5.6.0 allows remote unauthenticated attackers to cause a Denial of Service and potentially a remote code execution via a specially crafted HTTP header sent to the logging service.Show less
CVE-2018-18311 8Apple CanonicalDebian+5 more 18Debian Linux E Series Santricity Os ControllerEnterprise Linux+15 more Nov 21, 2024 Dec 7, 2018 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Perl before 5.26.3 and 5.28.x before 5.28.1 has a buffer overflow via a crafted regular expression that triggers invalid write operations.
CVE-2018-6757 1Mcafee 1True Key Nov 21, 2024 Dec 6, 2018 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 Privilege Escalation vulnerability in Microsoft Windows client in McAfee True Key (TK) 5.1.230.7 and earlier allows local users to execute arbitrary code via specially crafted malware.
CVE-2018-6756 1Mcafee 1True Key Nov 21, 2024 Dec 6, 2018 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 Authentication Abuse vulnerability in Microsoft Windows client in McAfee True Key (TK) 5.1.230.7 and earlier allows local users to execute unauthorized commands via specially crafted malware.
CVE-2018-6755 1Mcafee 1True Key Nov 21, 2024 Dec 6, 2018 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 Weak Directory Permission Vulnerability in Microsoft Windows client in McAfee True Key (TK) 5.1.230.7 and earlier allows local users to execute arbitrary code via specially crafted malware.
CVE-2018-6695 1Mcafee 1Threat Intelligence Exchange Server Nov 21, 2024 Oct 3, 2018 N/A· v4 5.9 MEDIUM· v3 4.3 MEDIUM· v2 SSH host keys generation vulnerability in the server in McAfee Threat Intelligence Exchange Server (TIE Server) 1.3.0, 2.0.x, 2.1.x, 2.2.0 allows man-in-the-middle attackers to spoof servers via acquiring keys from anoth...Show more SSH host keys generation vulnerability in the server in McAfee Threat Intelligence Exchange Server (TIE Server) 1.3.0, 2.0.x, 2.1.x, 2.2.0 allows man-in-the-middle attackers to spoof servers via acquiring keys from another environment.Show less
CVE-2018-6689 1Mcafee 1Data Loss Prevention Endpoint Nov 21, 2024 Oct 3, 2018 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 Authentication Bypass vulnerability in McAfee Data Loss Prevention Endpoint (DLPe) 10.0.x earlier than 10.0.510, and 11.0.x earlier than 11.0.600 allows attackers to bypass local security protection via specific conditio...Show more Authentication Bypass vulnerability in McAfee Data Loss Prevention Endpoint (DLPe) 10.0.x earlier than 10.0.510, and 11.0.x earlier than 11.0.600 allows attackers to bypass local security protection via specific conditions.Show less

Previous 1...141516...31 Next