mcafee

Top products

The 15 most recently published vulnerabilities affecting mcafee.

• CVE-2016-20050NetSchedScan 1.0 Buffer Overflow Denial of Service6.2Apr 4, 2026
• CVE-2024-25254SuperScan v4.1 was discovered to contain a buffer overflow via the Hostname/IP parameter.9.8Nov 11, 2024
• CVE-2023-5445 An open redirect vulnerability in ePolicy Orchestrator prior to 5.10.0 CP1 Update 2, allows a remote low privileged user to modify the URL parameter for the purpose of redirecting URL request(s) t...5.4Nov 17, 2023
• CVE-2023-5444CSRF in ePO leading to privilege escalation8.0Nov 17, 2023
• CVE-2023-40352McAfee Safe Connect before 2.16.1.126 may allow an adversary with system privileges to achieve privilege escalation by loading arbitrary DLLs.7.2Aug 21, 2023
• CVE-2023-3946 A reflected cross-site scripting (XSS) vulnerability in ePO prior to 5.10 SP1 Update 1allows a remote unauthenticated attacker to potentially obtain access to an ePO administrator's session by con...5.4Jul 26, 2023
• CVE-2023-25134McAfee Total Protection prior to 16.0.50 may allow an adversary (with full administrative access) to modify a McAfee specific Component Object Model (COM) in the Windows Registry. This can result i...6.7Mar 21, 2023
• CVE-2023-0978 A command injection vulnerability in Trellix Intelligent Sandbox CLI for version 5.2 and earlier, allows a local user to inject and execute arbitrary operating system commands using specially craf...6.4Mar 13, 2023
• CVE-2023-24579McAfee Total Protection prior to 16.0.51 allows attackers to trick a victim into uninstalling the application via the command prompt.5.5Mar 13, 2023
• CVE-2023-24578McAfee Total Protection prior to 16.0.49 allows attackers to elevate user privileges due to DLL sideloading. This could enable a user with lower privileges to execute unauthorized tasks.5.5Mar 13, 2023
• CVE-2023-24577McAfee Total Protection prior to 16.0.50 allows attackers to elevate user privileges due to Improper Link Resolution via registry keys. This could enable a user with lower privileges to execute una...5.5Mar 13, 2023
• CVE-2023-0221Product security bypass vulnerability in ACC prior to version 8.3.4 allows a locally logged-in attacker with administrator privileges to bypass the execution controls provided by ACC using the util...4.4Jan 13, 2023
• CVE-2022-43751McAfee Total Protection prior to version 16.0.49 contains an uncontrolled search path element vulnerability due to the use of a variable pointing to a subdirectory that may be controllable by an un...7.8Nov 22, 2022
• CVE-2022-2188DXL Broker privilege escalation vulnerability6.5Nov 7, 2022
• CVE-2022-3339Reflected XSS in Trellix ePO server5.4Oct 18, 2022