Vulnerabilities in McAfee

106 results
CVE-2017-3897A Code Injection vulnerability in the non-certificate-based authentication mechanism in McAfee Live Safe versions prior to 16.0.3 and McAfeeEPSS 11.7%CVE-2018-6671MEDIUMSB10240 - ePolicy Orchestrator (ePO) - Application Protection Bypass vulnerabilityEPSS 4.7%CVE-2018-6667CRITICALMcAfee Web Gateway - Authentication Bypass vulnerabilityEPSS 3.5%CVE-2017-4053Command Injection vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote unauthenticatEPSS 3.4%CVE-2017-4011Embedding Script (XSS) in HTTP Headers vulnerability in the server in McAfee Network Data Loss Prevention (NDLP) 9.3.x allows remote attackeEPSS 3.3%CVE-2017-3898A man-in-the-middle attack vulnerability in the non-certificate-based authentication mechanism in McAfee LiveSafe (MLS) versions prior to 16EPSS 3.2%CVE-2017-3980A directory traversal vulnerability in the ePO Extension in McAfee ePolicy Orchestrator (ePO) 5.9.0, 5.3.2, and 5.1.3 and earlier allows remEPSS 2.8%CVE-2017-4054Command Injection vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote authenticatedEPSS 2.5%CVE-2019-3581HIGHMcAfee Web Gateway denial of service attack due to Improper Input ValidationEPSS 2.3%CVE-2018-6677HIGHMcAfee Web Gateway (MWG) - Directory Traversal vulnerabilityEPSS 2.1%CVE-2017-4052Authentication Bypass vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote unauthentEPSS 2.1%CVE-2019-3638HIGHWeb Gateway (MWG) - Reflected Cross Site Scripting vulnerabilityEPSS 1.9%CVE-2018-6660MEDIUMSB10228 ePO Directory Traversal vulnerabilityEPSS 1.7%CVE-2017-3907MEDIUMMcAfee Threat Intelligence Exchange (TIE) Server - Code Injection vulnerabilityEPSS 1.6%CVE-2017-3972HIGHSB10192 - Network Security Management (NSM) - Infrastructure-based foot printing vulnerabilityEPSS 1.5%CVE-2017-3968HIGHMcAfee Network Security Management (NSM) and Network Data Loss Prevention (NDLP)- Password recovery exploitation vulnerabilityEPSS 1.5%CVE-2017-3936MEDIUMMcAfee ePolicy Orchestrator (ePO) - OS Command Injection vulnerabilityEPSS 1.4%CVE-2019-3587HIGHDLL Search Order Hijacking vulnerabilityEPSS 1.4%CVE-2018-6670HIGHExternal Entity Attack vulnerability in McAfee Common UI (CUI)EPSS 1.3%CVE-2017-4012Privilege Escalation vulnerability in the server in McAfee Network Data Loss Prevention (NDLP) 9.3.x allows remote authenticated users to viEPSS 1.3%