Known Vulnerabilities for products from Mcafee
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Mcafee".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Additional devices specifications by Mcafee can be found at device.report : Mcafee
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2022-0280 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7 - HIGH | 2022-03-10 | 2023-11-16 |
| CVE-2022-0166 | A privilege escalation vulnerability in the McAfee Agent prior to 5.7.5. McAfee Agent uses openssl.cnf during the build proce... | 7.8 - HIGH | 2022-01-19 | 2023-11-07 |
| CVE-2022-0129 | Uncontrolled search path element vulnerability in McAfee TechCheck prior to 4.0.0.2 allows a local administrator to load thei... | 6.7 - MEDIUM | 2022-01-11 | 2023-11-07 |
| CVE-2021-33037 | Apache Tomcat 10.0.0-M1 to 10.0.6, 9.0.0.M1 to 9.0.46 and 8.5.0 to 8.5.66 did not correctly parse the HTTP transfer-encoding ... | 5.3 - MEDIUM | 2021-07-12 | 2023-11-07 |
| CVE-2021-31854 | A command Injection Vulnerability in McAfee Agent (MA) for Windows prior to 5.7.5 allows local users to inject arbitrary shel... | 7.8 - HIGH | 2022-01-19 | 2023-11-07 |
| CVE-2021-31853 | DLL Search Order Hijacking Vulnerability in McAfee Drive Encryption (MDE) prior to 7.3.0 HF2 (7.3.0.183) allows local users t... | 7.8 - HIGH | 2021-11-10 | 2023-11-15 |
| CVE-2021-31852 | A Reflected Cross-Site Scripting vulnerability in McAfee Policy Auditor prior to 6.5.2 allows a remote unauthenticated attack... | 6.1 - MEDIUM | 2021-11-23 | 2023-11-21 |
| CVE-2021-31851 | A Reflected Cross-Site Scripting vulnerability in McAfee Policy Auditor prior to 6.5.2 allows a remote unauthenticated attack... | 6.1 - MEDIUM | 2021-11-23 | 2023-11-07 |
| CVE-2021-31850 | A denial-of-service vulnerability in Database Security (DBS) prior to 4.8.4 allows a remote authenticated administrator to tr... | 6.1 - MEDIUM | 2021-12-08 | 2023-11-07 |
| CVE-2021-31849 | SQL injection vulnerability in McAfee Data Loss Prevention (DLP) ePO extension prior to 11.7.100 allows a remote attacker log... | 7.2 - HIGH | 2021-11-01 | 2023-11-15 |
| CVE-2021-31848 | Cross site scripting (XSS) vulnerability in McAfee Data Loss Prevention (DLP) ePO extension prior to 11.7.100 allows a remote... | 6.1 - MEDIUM | 2021-11-01 | 2023-11-16 |
| CVE-2021-31847 | Improper access control vulnerability in the repair process for McAfee Agent for Windows prior to 5.7.4 could allow a local a... | 7.8 - HIGH | 2021-09-22 | 2023-11-15 |
| CVE-2021-31845 | A buffer overflow vulnerability in McAfee Data Loss Prevention (DLP) Discover prior to 11.6.100 allows an attacker in the sam... | 7.3 - HIGH | 2021-09-17 | 2023-11-15 |
| CVE-2021-31844 | A buffer overflow vulnerability in McAfee Data Loss Prevention (DLP) Endpoint for Windows prior to 11.6.200 allows a local at... | 7.3 - HIGH | 2021-09-17 | 2023-11-15 |
| CVE-2021-31843 | Improper privileges management vulnerability in McAfee Endpoint Security (ENS) Windows prior to 10.7.0 September 2021 Update ... | 7.8 - HIGH | 2021-09-17 | 2023-11-07 |
| CVE-2021-31842 | XML Entity Expansion injection vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 September 2021 Upd... | 5.5 - MEDIUM | 2021-09-17 | 2023-11-07 |
| CVE-2021-31841 | A DLL sideloading vulnerability in McAfee Agent for Windows prior to 5.7.4 could allow a local user to perform a DLL sideload... | 7.3 - HIGH | 2021-09-22 | 2023-11-15 |
| CVE-2021-31840 | A vulnerability in the preloading mechanism of specific dynamic link libraries in McAfee Agent for Windows prior to 5.7.3 cou... | 7.3 - HIGH | 2021-06-10 | 2023-11-07 |
| CVE-2021-31839 | Improper privilege management vulnerability in McAfee Agent for Windows prior to 5.7.3 allows a local user to modify event in... | 3.3 - LOW | 2021-06-10 | 2023-11-15 |
| CVE-2021-31838 | A command injection vulnerability in MVISION EDR (MVEDR) prior to 3.4.0 allows an authenticated MVEDR administrator to trigge... | 9.1 - CRITICAL | 2021-06-29 | 2023-11-07 |
Known software with vulnerabilities from Mcafee
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Mcafee | Active Response | 1.0.0 |
| Application | Mcafee | Advanced Threat Defense | 3.4 |
| Application | Mcafee | Agent | - |
| Application | Mcafee | Antispyware | - |
| Application | Mcafee | Antispyware Enterprise Module | 8.7.0.129 |
| Application | Mcafee | Antivirus Engine | - |
| Application | Mcafee | Anti-virus Plus | - |
| Application | Mcafee | Application And Change Control | - |
| Application | Mcafee | Application Change Control | 6.2.0 |
| Application | Mcafee | Application Control | 5.1.0 |
| Application | Mcafee | Asap Virusscan | - |
| Application | Mcafee | Asset Baseline Monitor | 3.5.0 |
| Application | Mcafee | Asset Baseline Monitor Agent | 3.5.0 |
| Application | Mcafee | Asset Manager | 6.6 |
| Application | Mcafee | Change Control | 5.1.0 |
| Application | Mcafee | Client Proxy | 3.0.0 |
| Application | Mcafee | Cloud Analysis And Deconstructive Services | 1.0.0.3 |
| Application | Mcafee | Cloud Identity Manager | 3.0 |
| Application | Mcafee | Cloud Single Sign On | 4.0.0 |
| Application | Mcafee | Common Catalog | 2.0.0 |