Mcafee Latest Vulnerabilities

November 15

Incorrect Access Control Leads to Local Escalation of Privileges

CVE-2024-49592

McAfee

August 21

CVE-2023-40352

McafeeSafe Connect7.2HIGH

March 21

CVE-2023-25134

McafeeTotal Protection6.7MEDIUM

March 13

CVE-2023-24579

McafeeTotal Protection5.5MEDIUM

CVE-2023-24577

McafeeTotal Protection5.5MEDIUM

CVE-2023-24578

McafeeTotal Protection5.5MEDIUM

November 23

CVE-2022-43751

McafeeTotal Protection7.8HIGH

August 18

CVE-2022-37025

McafeeSecurity Scan Plus7.8HIGH

March 10

McAfee Total Protection (MTP) - File Deletion vulnerability

CVE-2022-0280

McAfeeMcAfee Total Protectio...7HIGH

McAfee WebAdvisor - Extension Fingerprinting vulnerability

CVE-2022-0815

McafeeMcafee Webadvisor6.5MEDIUM

November 1

Data Loss Prevention (DLP) ePO extension - Cross site scripting (XSS)

CVE-2021-31848

McafeeData Loss Prevention (...8.4HIGH

Data Loss Prevention (DLP) ePO extension - SQL injection

CVE-2021-31849

McafeeData Loss Prevention (...8.4HIGH

October 26

McAfee Total Protection (MTP) - Privilege Escalation vulnerability

CVE-2021-23877

McafeeMcafee Total Protectio...6.7MEDIUM

January 5

Network Security Management (NSM) - Cross Site Request Forgery vulnerability

CVE-2020-7336

McafeeNetwork Security Manag...6.6MEDIUM

December 10

Database Security(DBS)-Use of a Broken or Risky Cryptographic Algorithm

CVE-2020-7339

McafeeDatabase Security6.3MEDIUM

October 14

ePolicy Orchistrator (ePO) - Cross-Site Scripting vulnerability

CVE-2020-7317

McafeeEpolicy Orchistrator (...4.6MEDIUM

ePolicy Orchistrator (ePO) - Cross-Site Scripting vulnerability

CVE-2020-7318

McafeeEpolicy Orchistrator (...4.6MEDIUM

October 7

File and Removable Media Protection update fixes one vulnerability

CVE-2020-7316

McafeeFile & Removable Media...6.6MEDIUM

September 16

McAfee Email Gateway (MEG) - Path Traversal vulnerability

CVE-2020-7268

McafeeMcafee Email Gateway (...4.3MEDIUM

Web Gateway (MWG) - Privilege Escalation vulnerability

CVE-2020-7297

McafeeMcafee Web Gateway (mwg)5.7MEDIUM

September 15

Web Gateway (MWG) - Privilege Escalation vulnerability

CVE-2020-7295

McafeeMcafee Web Gateway (mwg)3.5LOW

Web Gateway (MWG) - Privilege Escalation vulnerability

CVE-2020-7296

McafeeMcafee Web Gateway (mwg)5.7MEDIUM

Web Gateway (MWG) - Privilege Escalation vulnerability

CVE-2020-7293

McafeeMcafee Web Gateway (mwg)9CRITICAL

Web Gateway (MWG) - Privilege Escalation vulnerability

CVE-2020-7294

McafeeMcafee Web Gateway (mwg)4.6MEDIUM

August 13

DLP for Mac - Unprotected Storage of Credentials

CVE-2020-7307

McafeeData Loss Prevention(dlp)5.2MEDIUM

DLP for Mac - Unprotected Storage of Credentials

CVE-2020-7306

McafeeData Loss Prevention(dlp)5.2MEDIUM

DLP ePO extension - Privilege escalation

CVE-2020-7305

McafeeDlp Epo Extension6.7MEDIUM

DLP ePO extension - Cross-site request forgery

CVE-2020-7304

McafeeDlp Epo Extension7.6HIGH

DLP ePO extension - Cross-site scripting

CVE-2020-7303

McafeeDlp Epo Extension4.1MEDIUM

DLP ePO extension - Unrestricted Upload of File with Dangerous Type

CVE-2020-7302

McafeeDlp Epo Extension5.4MEDIUM

August 12

DLP ePO extension - Cross site scripting

CVE-2020-7301

McafeeDlp Epo Extension4.1MEDIUM

DLP ePO extension - Improper Authorization

CVE-2020-7300

McafeeDlp Epo Extension4.6MEDIUM

August 5

Total Protection (MTP) - Unexpected behavior violation

CVE-2020-7298

McafeeMcafee Total Protectio...7.5HIGH

July 15

Web Gateway (MWG) - Inappropriate Encoding for output context

CVE-2020-7292

McafeeMcafee Web Gateway (mwg)4.3MEDIUM

July 3

Network Security Management (NSM) - Exposure of Sensitive Information

CVE-2020-7284

McafeeNetwork Security Manag...8.6HIGH

March 18

Network Security Management (NSM) - Cross site scripting vulnerability

CVE-2020-7256

McafeeNetwork Security Manag...4.8MEDIUM

Network Security Management (NSM) - Cross site scripting vulnerability

CVE-2020-7258

McafeeNetwork Security Manag...4.8MEDIUM

November 22

Client Proxy (MCP) - Authentication Bypass vulnerability

CVE-2019-3654

McafeeClient Proxy (mcp)5.3MEDIUM

November 14

Advanced Threat Defense (ATD) - Unprotected storage of shared credentials vulnerability

CVE-2019-3663

McafeeAdvanced Threat Defens...👾9.8CRITICAL

Advanced Threat Defense (ATD) - Path Traversal: '/absolute/pathname/here' vulnerability

CVE-2019-3662

McafeeAdvanced Threat Defens...6.5MEDIUM

Advanced Threat Defense (ATD) - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

CVE-2019-3661

McafeeAdvanced Threat Defens...8.1HIGH

Data Loss Prevention - Unprotected Transport of Credentials

CVE-2019-3640

McafeeData Loss Prevention4.8MEDIUM

November 13

Advanced Threat Defense (ATD) - Improper Neutralization of HTTP requests

CVE-2019-3660

McafeeAdvanced Threat Defens...8.4HIGH

Advanced Threat Defense (ATD) - Information Disclosure vulnerability

CVE-2019-3650

McafeeAdvanced Threat Defens...5.3MEDIUM

Advanced Threat Defense (ATD) - Information Disclosure vulnerability

CVE-2019-3651

McafeeAdvanced Threat Defens...8.8HIGH

Advanced Threat Defense (ATD) - Information Disclosure vulnerability

CVE-2019-3649

McafeeAdvanced Threat Defens...5.3MEDIUM

September 12

Web Gateway (MWG) - Reflected Cross Site Scripting vulnerability

CVE-2019-3638

McafeeWeb Gateway(mwg)8.1HIGH

January 23

DLL Search Order Hijacking vulnerability

CVE-2019-3587

McafeeTotal Protection (mtp)7.2HIGH

Exploitation of Authentication vulnerability

CVE-2019-3584

McafeeMvision Endpoint7.4HIGH

January 9

McAfee Web Gateway denial of service attack due to Improper Input Validation

CVE-2019-3581

McafeeMcafee Web Gateway7.5HIGH

January 2

CVE-2018-7900

McAfeeSome Hg Products6.5MEDIUM

December 31

Bypass Application Control with simple DLL

CVE-2018-6668

McafeeApplication And Change...6.1MEDIUM

December 20

Bypass Application Control through an ASP.NET form

CVE-2018-6669

McafeeApplication And Change...6.3MEDIUM

December 14

McAfee Agent Insecure usage of temporary files vulnerability

CVE-2018-6707

McafeeMcafee Agent (ma) Non-...3.7LOW

December 12

McAfee Agent (MA) non-Windows versions incorrect use of temporary file vulnerability

CVE-2018-6706

McafeeMcafee Agent (ma) For ...2.3LOW

McAfee Agent for Linux Privilege Escalation vulnerability

CVE-2018-6704

McafeeMcafee Agent (ma) For ...4.7MEDIUM

McAfee Agent (MA) for Linux Privilege Escalation vulnerability

CVE-2018-6705

McafeeMcafee Agent (ma) For ...2.3LOW

December 6

True Key (TK) Windows Client - Authentication Abuse vulnerability

CVE-2018-6756

McafeeTrue Key7.8HIGH

True Key (TK) Windows Client - Privilege Escalation vulnerability

CVE-2018-6757

McafeeTrue Key7.5HIGH

True Key (TK) Windows Client - Weak Directory Permission Vulnerability

CVE-2018-6755

McafeeTrue Key7.2HIGH

December 4

CVE-2018-7987

McAfeeHuawei P205.9MEDIUM

CVE-2018-7956

McAfeeHuawei Vip App5.3MEDIUM

November 27

CVE-2018-7988

McAfeeHuawei Nova 2 Plus, Hu...4.6MEDIUM

CVE-2018-7961

McAfeeEmily-al00a6.5MEDIUM

CVE-2018-7959

McAfeeEspace 79505.9MEDIUM

CVE-2018-7960

McAfeeEspace 79507.4HIGH

CVE-2018-7958

McAfeeEspace 79507.4HIGH

CVE-2018-7977

McAfeeFusionsphere Openstack7.5HIGH

CVE-2018-7946

McAfeeHuawei Honor 7a, Huawe...4.3MEDIUM

November 13

CVE-2018-7910

McAfeeAlp-al00b, Alp-tl00b, ...6.8MEDIUM

CVE-2018-7925

McAfeeEmily-al00a6.8MEDIUM

CVE-2018-7926

McAfeeHuawei Watch 24.6MEDIUM

October 23

CVE-2018-7911

McAfeeAlp-al00b, Alp-al00b-r...4.6MEDIUM

October 17

CVE-2018-7924

McAfeeAnne-al002.4LOW

CVE-2017-17176

McAfeeMate 9, Mate 9 Pro6.7MEDIUM

CVE-2018-7989

McAfeeMate 10 Pro4.6MEDIUM

October 9

CVE-2018-7928

McAfeeMycloud4.6MEDIUM

October 3

Threat Intelligence Exchange Server (TIE Server) SSH host keys generation vulnerability

CVE-2018-6695

McafeeThreat Intelligence Ex...6.1MEDIUM

Data Loss Prevention Endpoint (DLPe) - Authentication Bypass vulnerability

CVE-2018-6689

McafeeData Loss Prevention E...7HIGH

September 26

CVE-2018-7907

McAfeeAgassi-l09,agassi-w09,...5.5MEDIUM

September 24

True Key (TK) - DLL Search Order Hijacking vulnerability

CVE-2018-6700

McafeeTrue Key (tk)7.5HIGH

True Key (TK) - Cross Site Scripting Exposure

CVE-2018-6682

McafeeTrue Key (tk)5.9MEDIUM

September 18

McAfee Application Control and Change Control (MACC) - password management security feature bypass (SFB) leading to an authentication bypass

CVE-2017-3912

McafeeMcafee Application Con...4.4MEDIUM

McAfee Application Control (MAC) - Whitelist bypass using a hard drive solidified by MACC

CVE-2018-6690

McafeeMcafee Application Con...6.1MEDIUM

Endpoint Security for Linux Threat Prevention (ENSLTP) privilege escalation vulnerability

CVE-2018-6693

McafeeEndpoint Security For ...5.6MEDIUM

CVE-2018-7929

McAfeeMate Rs6.8MEDIUM

CVE-2018-7991

McAfeeMate104.6MEDIUM

September 12

CVE-2018-7921

McAfeeB315s-226.5MEDIUM

CVE-2018-7906

McAfeeLeland-al00, Leland-al00a5.5MEDIUM

CVE-2018-7922

McAfeeAlp-l097.8HIGH

CVE-2018-7939

McAfeeG9 Lite, Honor 5a, Hon...4.6MEDIUM

CVE-2018-7923

McAfeeAlp-l097.8HIGH

September 4

CVE-2018-7938

McAfeeP103.3LOW

CVE-2018-7990

McAfeeMate10 Pro4.6MEDIUM

CVE-2018-7936

McAfeeMate 10 Pro4.6MEDIUM

CVE-2018-7937

McAfeeHirouter-cd20, Ws5200-107.8HIGH

August 21

CVE-2017-17311

McAfeeUsg2205bsr; Usg2220bsr...7.5HIGH

CVE-2017-17312

McAfeeUsg2205bsr; Usg2220bsr...7.5HIGH

CVE-2017-17305

McAfeeUsg2205bsr; Usg2220bsr...5.9MEDIUM

July 31

CVE-2018-7957

McAfeeVictoria-al003.3LOW