MidnightBSD

Advisories for mcafee

CVE-2000-0119 HIGH

The default configurations for McAfee Virus Scan and Norton Anti-Virus virus checkers do not check files in the RECYCLED folder that is used by the Windows Recycle Bin utility, which allows attackers to store malicious code without detection.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
symantec norton_antivirus *
mcafee virusscan *
CVE-2000-0502 LOW

Mcafee VirusScan 4.03 does not properly restrict access to the alert text file before it is sent to the Central Alert Server, which allows local users to modify alerts in an arbitrary fashion.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mcafee virusscan 4.0.3
CVE-2000-1128 MEDIUM

The default configuration of McAfee VirusScan 4.5 does not quote the ImagePath variable, which improperly sets the search path and allows local users to place a Trojan horse "common.exe" program in the C:\Program Files directory.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mcafee virusscan 4.5
CVE-2001-0612 MEDIUM

McAfee Remote Desktop 3.0 and earlier allows remote attackers to cause a denial of service (crash) via a large number of packets to port 5045.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mcafee remote_desktop_32 *
mcafee remote_desktop_32 2.1.2
mcafee remote_desktop_32 3.0
CVE-2001-1144 MEDIUM

Directory traversal vulnerability in McAfee ASaP VirusScan agent 1.0 allows remote attackers to read arbitrary files via a .. (dot dot) in the HTTP request.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mcafee asap_virusscan 1.0
CVE-2001-1456 HIGH

Buffer overflow in the (1) smap/smapd and (2) CSMAP daemons for Gauntlet Firewall 5.0 through 6.0 allows remote attackers to execute arbitrary code via a crafted mail message.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
pgp e-ppliance_300 1.0
mcafee webshield_smtp 4.1
pgp e-ppliance_300 2.0
sgi irix 6.4
pgp e-ppliance_300 1.5
mcafee webshield_smtp 4.0
network_associates mcafee_e-ppliance 100_series
network_associates gauntlet_firewall 4.2
network_associates gauntlet_firewall unix_6.0
sgi irix 6.2
sgi irix 6.5
network_associates mcafee_e-ppliance 120_series
sgi irix 6.3
network_associates gauntlet_firewall unix_5.0
network_associates gauntlet_firewall unix_5.5
CVE-2002-0690 HIGH

Format string vulnerability in McAfee Security ePolicy Orchestrator (ePO) 2.5.1 allows remote attackers to execute arbitrary code via an HTTP GET request with a URI containing format strings.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator 2.5.1
CVE-2002-1875 MEDIUM

Entercept Agent 2.5 agent for Windows, released before May 21, 2002, allows local administrative users to obtain the entercept agent password, which could allow the administrators to log on as the entercept_agent account and conceal their identity.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mcafee entercept_agent 2.5
CVE-2002-2282 MEDIUM

McAfee VirusScan 4.5.1, when the WebScanX.exe module is enabled, searches for particular DLLs from the user's home directory, even when browsing the local hard drive, which allows local users to run arbitrary code via malicious versions of those DLLs.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mcafee virusscan 4.5.1
CVE-2003-0148 HIGH

The default installation of MSDE via McAfee ePolicy Orchestrator 2.0 through 3.0 allows attackers to execute arbitrary code via a series of steps that (1) obtain the database administrator username and encrypted password in a configuration file from the ePO server using a certain request, (2) crack the password due to weak cryptography, and (3) use the password to pass commands through xp_cmdshell.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator 2.0
mcafee epolicy_orchestrator 2.5.1
mcafee epolicy_orchestrator 2.5
mcafee epolicy_orchestrator 3.0
CVE-2003-0149 HIGH

Heap-based buffer overflow in ePO agent for McAfee ePolicy Orchestrator 2.0, 2.5, and 2.5.1 allows remote attackers to execute arbitrary code via a POST request containing long parameters.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator 2.0
mcafee epolicy_orchestrator 2.5.1
mcafee epolicy_orchestrator 2.5
CVE-2003-0610 MEDIUM

Directory traversal vulnerability in ePO agent for McAfee ePolicy Orchestrator 3.0 allows remote attackers to read arbitrary files via a certain HTTP request.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator 3.0
CVE-2003-0616 HIGH

Format string vulnerability in ePO service for McAfee ePolicy Orchestrator 2.0, 2.5, and 2.5.1 allows remote attackers to execute arbitrary code via a POST request with format strings in the computerlist parameter, which are used when logging a failed name resolution.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator 2.0
mcafee epolicy_orchestrator 2.5.1
mcafee epolicy_orchestrator 2.5
CVE-2004-0038 HIGH

McAfee ePolicy Orchestrator (ePO) 2.5.1 Patch 13 and 3.0 SP2a Patch 3 allows remote attackers to execute arbitrary commands via certain HTTP POST requests to the spipe/file handler on ePO TCP port 81.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator 2.5.1
mcafee epolicy_orchestrator 2.5
mcafee epolicy_orchestrator 3.0
CVE-2004-0095 MEDIUM

McAfee ePolicy Orchestrator agent allows remote attackers to cause a denial of service (memory consumption and crash) and possibly execute arbitrary code via an HTTP POST request with an invalid Content-Length value, possibly triggering a buffer overflow.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator 3.6.0
CVE-2004-0230 MEDIUM

TCP, when using a large Window Size, makes it easier for remote attackers to guess sequence numbers and cause a denial of service (connection loss) to persistent TCP connections by repeatedly injecting a TCP RST packet, especially in protocols that use long-lived connections, such as BGP.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
juniper junos 12.1x47
juniper junos 13.3
xinuos unixware 7.1.1
microsoft windows_98se -
juniper junos 11.4
juniper junos 13.1
juniper junos 12.1x45
netbsd netbsd 1.5.1
microsoft windows_xp -
juniper junos 12.1
juniper junos 12.1x46
mcafee network_data_loss_prevention 9.2.1
juniper junos *
juniper junos 11.4r13
netbsd netbsd 1.6.2
xinuos openserver 5.0.6
netbsd netbsd 1.6
microsoft windows_98 -
mcafee network_data_loss_prevention *
openpgp openpgp 2.6.2
juniper junos 13.2
oracle solaris 11
oracle solaris 10
juniper junos 12.1x44
mcafee network_data_loss_prevention 9.2.0
xinuos openserver 5.0.7
netbsd netbsd 1.5.2
mcafee network_data_loss_prevention 9.2.2
netbsd netbsd 1.5
juniper junos 11.4x27
xinuos unixware 7.1.3
microsoft windows_2000 -
netbsd netbsd 2.0
juniper junos 12.3
juniper junos 12.1r
microsoft windows_server_2003 -
netbsd netbsd 1.6.1
juniper junos 12.2
netbsd netbsd 1.5.3
CVE-2004-0831 HIGH

McAfee VirusScan 4.5.1 does not drop SYSTEM privileges before allowing users to browse for files via the "System Scan" properties of the System Tray applet, which could allow local users to gain privileges.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mcafee virusscan 4.5
mcafee virusscan 4.5.1
CVE-2004-0932 HIGH

McAfee Anti-Virus Engine DATS drivers before 4398 released on Oct 13th 2004 and DATS Driver before 4397 October 6th 2004 allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
eset_software nod32_antivirus 1.0.13
sophos sophos_anti-virus 3.85
broadcom etrust_intrusion_detection 1.4.1.13
sophos sophos_anti-virus 3.4.6
rav_antivirus rav_antivirus_for_mail_servers 8.4.2
sophos sophos_anti-virus 3.84
archive_zip archive_zip 1.13
broadcom brightstor_arcserve_backup 11.1
rav_antivirus rav_antivirus_desktop 8.6
broadcom etrust_ez_armor 2.4
sophos sophos_anti-virus 3.83
broadcom etrust_antivirus 7.1
broadcom etrust_ez_antivirus 6.3
kaspersky_lab kaspersky_anti-virus 5.0
sophos sophos_anti-virus 3.82
broadcom etrust_intrusion_detection 1.4.5
broadcom etrust_secure_content_manager 1.1
ca etrust_secure_content_manager 1.0
suse suse_linux 9.2
gentoo linux *
kaspersky_lab kaspersky_anti-virus 4.0
sophos sophos_anti-virus 3.80
sophos sophos_small_business_suite 1.0
sophos sophos_anti-virus 3.78d
mandrakesoft mandrake_linux 10.1
sophos sophos_anti-virus 3.81
broadcom etrust_antivirus_gateway 7.1
broadcom etrust_ez_armor 2.0
broadcom etrust_ez_armor 2.3
sophos sophos_anti-virus 3.86
eset_software nod32_antivirus 1.0.11
broadcom etrust_antivirus 7.0
broadcom etrust_ez_antivirus 6.2
gentoo linux 1.4
broadcom etrust_secure_content_manager 1.0
broadcom etrust_antivirus_gateway 7.0
sophos sophos_anti-virus 3.78
sophos sophos_puremessage_anti-virus 4.6
ca etrust_antivirus 7.0_sp2
sophos sophos_anti-virus 3.79
kaspersky_lab kaspersky_anti-virus 3.0
eset_software nod32_antivirus 1.0.12
rav_antivirus rav_antivirus_for_file_servers 1.0
mcafee antivirus_engine 4.3.20
broadcom etrust_intrusion_detection 1.5
broadcom etrust_ez_antivirus 6.1
broadcom inoculateit 6.0
CVE-2004-0933 HIGH

Computer Associates (CA) InoculateIT 6.0, eTrust Antivirus r6.0 through r7.1, eTrust Antivirus for the Gateway r7.0 and r7.1, eTrust Secure Content Manager, eTrust Intrusion Detection, EZ-Armor 2.0 through 2.4, and EZ-Antivirus 6.1 through 6.3 allow remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
eset_software nod32_antivirus 1.0.13
sophos sophos_anti-virus 3.85
broadcom etrust_intrusion_detection 1.4.1.13
sophos sophos_anti-virus 3.4.6
rav_antivirus rav_antivirus_for_mail_servers 8.4.2
sophos sophos_anti-virus 3.84
archive_zip archive_zip 1.13
broadcom brightstor_arcserve_backup 11.1
rav_antivirus rav_antivirus_desktop 8.6
broadcom etrust_ez_armor 2.4
sophos sophos_anti-virus 3.83
broadcom etrust_antivirus 7.1
broadcom etrust_ez_antivirus 6.3
kaspersky_lab kaspersky_anti-virus 5.0
sophos sophos_anti-virus 3.82
broadcom etrust_intrusion_detection 1.4.5
broadcom etrust_secure_content_manager 1.1
ca etrust_secure_content_manager 1.0
suse suse_linux 9.2
gentoo linux *
kaspersky_lab kaspersky_anti-virus 4.0
sophos sophos_anti-virus 3.80
sophos sophos_small_business_suite 1.0
sophos sophos_anti-virus 3.78d
mandrakesoft mandrake_linux 10.1
sophos sophos_anti-virus 3.81
broadcom etrust_antivirus_gateway 7.1
broadcom etrust_ez_armor 2.0
broadcom etrust_ez_armor 2.3
sophos sophos_anti-virus 3.86
eset_software nod32_antivirus 1.0.11
broadcom etrust_antivirus 7.0
broadcom etrust_ez_antivirus 6.2
gentoo linux 1.4
broadcom etrust_secure_content_manager 1.0
broadcom etrust_antivirus_gateway 7.0
sophos sophos_anti-virus 3.78
sophos sophos_puremessage_anti-virus 4.6
ca etrust_antivirus 7.0_sp2
sophos sophos_anti-virus 3.79
kaspersky_lab kaspersky_anti-virus 3.0
eset_software nod32_antivirus 1.0.12
rav_antivirus rav_antivirus_for_file_servers 1.0
mcafee antivirus_engine 4.3.20
broadcom etrust_intrusion_detection 1.5
broadcom etrust_ez_antivirus 6.1
broadcom inoculateit 6.0
CVE-2004-0934 HIGH

Kaspersky 3.x to 4.x allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
eset_software nod32_antivirus 1.0.13
sophos sophos_anti-virus 3.85
broadcom etrust_intrusion_detection 1.4.1.13
sophos sophos_anti-virus 3.4.6
rav_antivirus rav_antivirus_for_mail_servers 8.4.2
sophos sophos_anti-virus 3.84
archive_zip archive_zip 1.13
broadcom brightstor_arcserve_backup 11.1
rav_antivirus rav_antivirus_desktop 8.6
broadcom etrust_ez_armor 2.4
sophos sophos_anti-virus 3.83
broadcom etrust_antivirus 7.1
broadcom etrust_ez_antivirus 6.3
kaspersky_lab kaspersky_anti-virus 5.0
sophos sophos_anti-virus 3.82
broadcom etrust_intrusion_detection 1.4.5
broadcom etrust_secure_content_manager 1.1
ca etrust_secure_content_manager 1.0
suse suse_linux 9.2
gentoo linux *
kaspersky_lab kaspersky_anti-virus 4.0
sophos sophos_anti-virus 3.80
sophos sophos_small_business_suite 1.0
sophos sophos_anti-virus 3.78d
mandrakesoft mandrake_linux 10.1
sophos sophos_anti-virus 3.81
broadcom etrust_antivirus_gateway 7.1
broadcom etrust_ez_armor 2.0
broadcom etrust_ez_armor 2.3
sophos sophos_anti-virus 3.86
eset_software nod32_antivirus 1.0.11
broadcom etrust_antivirus 7.0
broadcom etrust_ez_antivirus 6.2
gentoo linux 1.4
broadcom etrust_secure_content_manager 1.0
broadcom etrust_antivirus_gateway 7.0
sophos sophos_anti-virus 3.78
sophos sophos_puremessage_anti-virus 4.6
ca etrust_antivirus 7.0_sp2
sophos sophos_anti-virus 3.79
kaspersky_lab kaspersky_anti-virus 3.0
eset_software nod32_antivirus 1.0.12
rav_antivirus rav_antivirus_for_file_servers 1.0
mcafee antivirus_engine 4.3.20
broadcom etrust_intrusion_detection 1.5
broadcom etrust_ez_antivirus 6.1
broadcom inoculateit 6.0
CVE-2004-0935 HIGH

Eset Anti-Virus before 1.020 (16th September 2004) allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
eset_software nod32_antivirus 1.0.13
sophos sophos_anti-virus 3.85
broadcom etrust_intrusion_detection 1.4.1.13
sophos sophos_anti-virus 3.4.6
rav_antivirus rav_antivirus_for_mail_servers 8.4.2
sophos sophos_anti-virus 3.84
archive_zip archive_zip 1.13
broadcom brightstor_arcserve_backup 11.1
rav_antivirus rav_antivirus_desktop 8.6
broadcom etrust_ez_armor 2.4
sophos sophos_anti-virus 3.83
broadcom etrust_antivirus 7.1
broadcom etrust_ez_antivirus 6.3
kaspersky_lab kaspersky_anti-virus 5.0
sophos sophos_anti-virus 3.82
broadcom etrust_intrusion_detection 1.4.5
broadcom etrust_secure_content_manager 1.1
ca etrust_secure_content_manager 1.0
suse suse_linux 9.2
gentoo linux *
kaspersky_lab kaspersky_anti-virus 4.0
sophos sophos_anti-virus 3.80
sophos sophos_small_business_suite 1.0
sophos sophos_anti-virus 3.78d
mandrakesoft mandrake_linux 10.1
sophos sophos_anti-virus 3.81
broadcom etrust_antivirus_gateway 7.1
broadcom etrust_ez_armor 2.0
broadcom etrust_ez_armor 2.3
sophos sophos_anti-virus 3.86
eset_software nod32_antivirus 1.0.11
broadcom etrust_antivirus 7.0
broadcom etrust_ez_antivirus 6.2
gentoo linux 1.4
broadcom etrust_secure_content_manager 1.0
broadcom etrust_antivirus_gateway 7.0
sophos sophos_anti-virus 3.78
sophos sophos_puremessage_anti-virus 4.6
ca etrust_antivirus 7.0_sp2
sophos sophos_anti-virus 3.79
kaspersky_lab kaspersky_anti-virus 3.0
eset_software nod32_antivirus 1.0.12
rav_antivirus rav_antivirus_for_file_servers 1.0
mcafee antivirus_engine 4.3.20
broadcom etrust_intrusion_detection 1.5
broadcom etrust_ez_antivirus 6.1
broadcom inoculateit 6.0
CVE-2004-0936 HIGH

RAV antivirus allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
eset_software nod32_antivirus 1.0.13
sophos sophos_anti-virus 3.85
broadcom etrust_intrusion_detection 1.4.1.13
sophos sophos_anti-virus 3.4.6
rav_antivirus rav_antivirus_for_mail_servers 8.4.2
sophos sophos_anti-virus 3.84
archive_zip archive_zip 1.13
broadcom brightstor_arcserve_backup 11.1
rav_antivirus rav_antivirus_desktop 8.6
broadcom etrust_ez_armor 2.4
sophos sophos_anti-virus 3.83
broadcom etrust_antivirus 7.1
broadcom etrust_ez_antivirus 6.3
kaspersky_lab kaspersky_anti-virus 5.0
sophos sophos_anti-virus 3.82
broadcom etrust_intrusion_detection 1.4.5
broadcom etrust_secure_content_manager 1.1
ca etrust_secure_content_manager 1.0
suse suse_linux 9.2
gentoo linux *
kaspersky_lab kaspersky_anti-virus 4.0
sophos sophos_anti-virus 3.80
sophos sophos_small_business_suite 1.0
sophos sophos_anti-virus 3.78d
mandrakesoft mandrake_linux 10.1
sophos sophos_anti-virus 3.81
broadcom etrust_antivirus_gateway 7.1
broadcom etrust_ez_armor 2.0
broadcom etrust_ez_armor 2.3
sophos sophos_anti-virus 3.86
eset_software nod32_antivirus 1.0.11
broadcom etrust_antivirus 7.0
broadcom etrust_ez_antivirus 6.2
gentoo linux 1.4
broadcom etrust_secure_content_manager 1.0
broadcom etrust_antivirus_gateway 7.0
sophos sophos_anti-virus 3.78
sophos sophos_puremessage_anti-virus 4.6
ca etrust_antivirus 7.0_sp2
sophos sophos_anti-virus 3.79
kaspersky_lab kaspersky_anti-virus 3.0
eset_software nod32_antivirus 1.0.12
rav_antivirus rav_antivirus_for_file_servers 1.0
mcafee antivirus_engine 4.3.20
broadcom etrust_intrusion_detection 1.5
broadcom etrust_ez_antivirus 6.1
broadcom inoculateit 6.0
CVE-2004-0937 HIGH

Sophos Anti-Virus before 3.87.0, and Sophos Anti-Virus for Windows 95, 98, and Me before 3.88.0, allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
eset_software nod32_antivirus 1.0.13
sophos sophos_anti-virus 3.85
broadcom etrust_intrusion_detection 1.4.1.13
sophos sophos_anti-virus 3.4.6
rav_antivirus rav_antivirus_for_mail_servers 8.4.2
sophos sophos_anti-virus 3.84
archive_zip archive_zip 1.13
broadcom brightstor_arcserve_backup 11.1
rav_antivirus rav_antivirus_desktop 8.6
broadcom etrust_ez_armor 2.4
sophos sophos_anti-virus 3.83
broadcom etrust_antivirus 7.1
broadcom etrust_ez_antivirus 6.3
kaspersky_lab kaspersky_anti-virus 5.0
sophos sophos_anti-virus 3.82
broadcom etrust_intrusion_detection 1.4.5
broadcom etrust_secure_content_manager 1.1
ca etrust_secure_content_manager 1.0
suse suse_linux 9.2
gentoo linux *
kaspersky_lab kaspersky_anti-virus 4.0
sophos sophos_anti-virus 3.80
sophos sophos_small_business_suite 1.0
sophos sophos_anti-virus 3.78d
mandrakesoft mandrake_linux 10.1
sophos sophos_anti-virus 3.81
broadcom etrust_antivirus_gateway 7.1
broadcom etrust_ez_armor 2.0
broadcom etrust_ez_armor 2.3
sophos sophos_anti-virus 3.86
eset_software nod32_antivirus 1.0.11
broadcom etrust_antivirus 7.0
broadcom etrust_ez_antivirus 6.2
gentoo linux 1.4
broadcom etrust_secure_content_manager 1.0
broadcom etrust_antivirus_gateway 7.0
sophos sophos_anti-virus 3.78
sophos sophos_puremessage_anti-virus 4.6
ca etrust_antivirus 7.0_sp2
sophos sophos_anti-virus 3.79
kaspersky_lab kaspersky_anti-virus 3.0
eset_software nod32_antivirus 1.0.12
rav_antivirus rav_antivirus_for_file_servers 1.0
mcafee antivirus_engine 4.3.20
broadcom etrust_intrusion_detection 1.5
broadcom etrust_ez_antivirus 6.1
broadcom inoculateit 6.0
CVE-2004-1096 HIGH

Archive::Zip Perl module before 1.14, when used by antivirus programs such as amavisd-new, allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
eset_software nod32_antivirus 1.0.13
sophos sophos_anti-virus 3.85
broadcom etrust_intrusion_detection 1.4.1.13
sophos sophos_anti-virus 3.4.6
rav_antivirus rav_antivirus_for_mail_servers 8.4.2
sophos sophos_anti-virus 3.84
broadcom brightstor_arcserve_backup 11.1
rav_antivirus rav_antivirus_desktop 8.6
broadcom etrust_ez_armor 2.4
sophos sophos_anti-virus 3.83
broadcom etrust_antivirus 7.1
broadcom etrust_ez_antivirus 6.3
kaspersky_lab kaspersky_anti-virus 5.0
sophos sophos_anti-virus 3.82
broadcom etrust_intrusion_detection 1.4.5
broadcom etrust_secure_content_manager 1.1
ca etrust_secure_content_manager 1.0
suse suse_linux 9.2
gentoo linux *
kaspersky_lab kaspersky_anti-virus 4.0
sophos sophos_anti-virus 3.80
sophos sophos_small_business_suite 1.0
sophos sophos_anti-virus 3.78d
mandrakesoft mandrake_linux 10.1
sophos sophos_anti-virus 3.81
broadcom etrust_antivirus_gateway 7.1
broadcom etrust_ez_armor 2.0
broadcom etrust_ez_armor 2.3
sophos sophos_anti-virus 3.86
eset_software nod32_antivirus 1.0.11
broadcom etrust_antivirus 7.0
broadcom etrust_ez_antivirus 6.2
gentoo linux 1.4
broadcom etrust_secure_content_manager 1.0
broadcom etrust_antivirus_gateway 7.0
sophos sophos_anti-virus 3.78
sophos sophos_puremessage_anti-virus 4.6
ca etrust_antivirus 7.0_sp2
sophos sophos_anti-virus 3.79
kaspersky_lab kaspersky_anti-virus 3.0
eset_software nod32_antivirus 1.0.12
rav_antivirus rav_antivirus_for_file_servers 1.0
mcafee antivirus_engine 4.3.20
broadcom etrust_intrusion_detection 1.5
broadcom etrust_ez_antivirus 6.1
broadcom inoculateit 6.0
CVE-2004-1908 MEDIUM

McFreeScan.CoMcFreeScan.1 ActiveX object in Mcafee FreeScan allows remote attackers to obtain sensitive information via the GetSpecialFolderLocation function with certain parameters.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mcafee freescan *
CVE-2004-2635 HIGH

An ActiveX control for McAfee Security Installer Control System 4.0.0.81 allows remote attackers to access the Windows registry via web pages that use the control's RegQueryValue() method.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mcafee security_installer_control_system 4.0.0.81
CVE-2005-0643 HIGH

Buffer overflow in McAfee Scan Engine 4320 with DAT version before 4357 allows remote attackers to execute arbitrary code via crafted LHA files.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mcafee antivirus_engine 4.3.20
CVE-2005-0644 HIGH

Buffer overflow in McAfee Scan Engine 4320 with DAT version before 4436 allows remote attackers to execute arbitrary code via a malformed LHA file with a type 2 header file name field, a variant of CVE-2005-0643.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mcafee antivirus_engine 4.3.20
CVE-2005-1107 HIGH

McAfee Internet Security Suite 2005 uses insecure default ACLs for installed files, which allows local users to gain privileges or disable protection by modifying certain files.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mcafee internet_security_suite 2005
CVE-2005-2186 LOW

Multiple cross-site scripting (XSS) vulnerabilities in McAfee IntruShield Security Management System allow remote authenticated users to inject arbitrary web script or HTML via the (1) thirdMenuName or (2) resourceName parameter to SystemEvent.jsp.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mcafee intrushield_security_management_system *
CVE-2005-2187 MEDIUM

McAfee IntruShield Security Management System allows remote authenticated users to access the "Generate Reports" feature and modify alerts by setting the Access option to true, as demonstrated using the (1) fullAccess or (2) fullAccessRight parameter in reports-column-center.jsp, or (3) fullAccess parameter to SystemEvent.jsp.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mcafee intrushield_security_management_system *
CVE-2005-2188 HIGH

McAfee IntruShield Security Management System obtains the user ID from the URL, which allows remote attackers to guess the Manager account and possibly gain privileges via a brute force attack.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mcafee intrushield_security_management_system *
CVE-2005-3377 MEDIUM

Multiple interpretation error in (1) McAfee Internet Security Suite 7.1.5 version 9.1.08 with the 4.4.00 engine and (2) McAfee Corporate 8.0.0 patch 10 with the 4400 engine allows remote attackers to bypass virus scanning via a file such as BAT, HTML, and EML with an "MZ" magic byte sequence which is normally associated with EXE, which causes the file to be treated as a safe type that could still be executed as a dangerous file type by applications on the end system, as demonstrated by a "triple headed" program that contains EXE, EML, and HTML content, aka the "magic byte bug."

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mcafee internet_security_suite 8.0.0_patch_10_engine_4400
mcafee internet_security_suite 7.1.5_version_9.1.08_engine_4.4.00
CVE-2005-3657 MEDIUM

The ActiveX control in MCINSCTL.DLL for McAfee VirusScan Security Center does not use the IObjectSafetySiteLock API to restrict access to required domains, which allows remote attackers to create or append to arbitrary files via the StartLog and AddLog methods in the MCINSTALL.McLog object.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mcafee mcinsctl.dll 4.0.0.83
mcafee virusscan_security_center 8.0
mcafee virusscan_security_center 9.0
mcafee virusscan_security_center 5.0
mcafee virusscan_security_center 4.5
mcafee virusscan_security_center 6.0
mcafee virusscan_security_center 4.5.1
mcafee virusscan_security_center *
mcafee virusscan_security_center 4.0.3
mcafee virusscan_security_center 7.1
mcafee virusscan_security_center 4.0
mcafee virusscan_security_center 7.0
CVE-2005-4505 HIGH

Unquoted Windows search path vulnerability in McAfee VirusScan Enterprise 8.0i (patch 11) and CMA 3.5 (patch 5) might allow local users to gain privileges via a malicious "program.exe" file in the C: folder, which is run by naPrdMgr.exe when it attempts to execute EntVUtil.EXE under an unquoted "Program Files" path.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mcafee common_management_agent 3.5
mcafee virusscan_enterprise 8.0i
CVE-2006-0559 HIGH

Format string vulnerability in the SMTP server for McAfee WebShield 4.5 MR2 and earlier allows remote attackers to execute arbitrary code via format strings in the domain name portion of a destination address, which are not properly handled when a bounce message is constructed.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mcafee webshield_smtp *
CVE-2006-0982 MEDIUM

The on-access scanner for McAfee Virex 7.7 for Macintosh, in some circumstances, might not activate when malicious content is accessed from the web browser, and might not prevent the content from being saved, which allows remote attackers to bypass virus protection, as demonstrated using the EICAR test file.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mcafee virex 7.7
CVE-2006-3575 LOW

Unknown vulnerability in the Buffer Overflow Protection in McAfee VirusScan Enterprise 8.0.0 allows local users to cause a denial of service (unstable operation) via a long string in the (1) "Process name", (2) "Module name", or (3) "API name" fields.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mcafee virusscan 8.0.0
CVE-2006-3623 MEDIUM

Directory traversal vulnerability in Framework Service component in McAfee ePolicy Orchestrator agent 3.5.0.x and earlier allows remote attackers to create arbitrary files via a .. (dot dot) in the directory and filename in a PropsResponse (PackageType) request.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator_agent *
CVE-2007-1538 HIGH

McAfee VirusScan Enterprise 8.5.0.i uses insecure permissions for certain Windows Registry keys, which allows local users to bypass local password protection via the UIP value in (1) HKEY_LOCAL_MACHINE\SOFTWARE\McAfee\DesktopProtection or (2) HKEY_LOCAL_MACHINE\SOFTWARE\Network Associates\TVD\VirusScan Entreprise\CurrentVersion. NOTE: this issue has been disputed by third-party researchers, stating that the default permissions for HKEY_LOCAL_MACHINE\SOFTWARE does not allow for write access and the product does not modify the inherited permissions. There might be an interaction error with another product

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mcafee virusscan_enterprise 8.5i
CVE-2010-2116 MEDIUM

The web interface in McAfee Email Gateway (formerly IronMail) 6.7.1 allows remote authenticated users, with only Read privileges, to gain Write privileges to modify configuration via the save action in a direct request to admin/systemWebAdminConfig.do.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-732,

Products Affected

Vendor Product Version
mcafee secure_mail 6.7.1
mcafee email_gateway 6.7.1
CVE-2010-2290 MEDIUM

Cross-site scripting (XSS) vulnerability in cgi-bin/cgix/help in McAfee Unified Threat Management (UTM) Firewall (formerly SnapGear) firmware 3.0.0 through 4.0.6 allows remote attackers to inject arbitrary web script or HTML via the page parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mcafee unified_threat_management_firewall_firmware 4.0.6
mcafee unified_threat_management_firewall_firmware 3.1.5
mcafee unified_threat_management_firewall_firmware 3.0.0
CVE-2010-5166 MEDIUM

Race condition in McAfee Total Protection 2010 10.0.580 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler execution, aka an argument-switch attack or a KHOBE attack. NOTE: this issue is disputed by some third parties because it is a flaw in a protection mechanism for situations where a crafted program has already begun to execute

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-362,

Products Affected

Vendor Product Version
mcafee total_protection_2010 10.0.580
CVE-2011-3006 MEDIUM

The MyAsUtil ActiveX control in MyAsUtil5.2.0.603.dll in McAfee SaaS Endpoint Protection 5.2.1 and earlier allows remote attackers to bypass the MyASUtil.SecureObjectFactory.CreateSecureObject domain execution policy using a cross-site scripting (XSS) attack, execute arbitrary code using the MyASUtil.InstallInfo.RunUserProgram function, and possibly conduct other unspecified attacks.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
mcafee saas_endpoint_protection *
CVE-2011-3007 MEDIUM

The myCIOScn ActiveX control (myCIOScn.dll) in McAfee SaaS Endpoint Protection 5.2.1 and earlier allows remote attackers to write to arbitrary files by specifying an arbitrary filename in the MyCioScan.Scan.ReportFile parameter, as demonstrated by injecting script into a log file and executing arbitrary code using the MyCioScan.Scan.Start method.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-94,

Products Affected

Vendor Product Version
mcafee saas_endpoint_protection *
CVE-2012-1425 MEDIUM

The TAR file parser in Avira AntiVir 7.11.1.163, Antiy Labs AVL SDK 2.0.3.7, Quick Heal (aka Cat QuickHeal) 11.00, Emsisoft Anti-Malware 5.1.0.1, Fortinet Antivirus 4.2.254.0, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, Jiangmin Antivirus 13.0.900, Kaspersky Anti-Virus 7.0.0.125, McAfee Anti-Virus Scanning Engine 5.400.0.1158, McAfee Gateway (formerly Webwasher) 2010.1C, NOD32 Antivirus 5795, Norman Antivirus 6.06.12, PC Tools AntiVirus 7.0.3.5, AVEngine 20101.3.0.103 in Symantec Endpoint Protection 11, Trend Micro AntiVirus 9.120.0.1004, and Trend Micro HouseCall 9.120.0.1004 allows remote attackers to bypass malware detection via a POSIX TAR file with an initial \50\4B\03\04 character sequence. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different TAR parser implementations.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
eset nod32_antivirus 5795
emsisoft anti-malware 5.1.0.1
pc_tools pc_tools_antivirus 7.0.3.5
mcafee scan_engine 5.400.0.1158
mcafee gateway 2010.1c
cat quick_heal 11.00
kaspersky kaspersky_anti-virus 7.0.0.125
trendmicro housecall 9.120.0.1004
jiangmin jiangmin_antivirus 13.0.900
fortinet fortinet_antivirus 4.2.254.0
norman norman_antivirus_&_antispyware 6.06.12
ikarus ikarus_virus_utilities_t3_command_line_scanner 1.1.97.0
antiy avl_sdk 2.0.3.7
symantec endpoint_protection 11.0
avira antivir 7.11.1.163
trendmicro trend_micro_antivirus 9.120.0.1004
CVE-2012-1429 MEDIUM

The ELF file parser in Bitdefender 7.2, Comodo Antivirus 7424, Emsisoft Anti-Malware 5.1.0.1, eSafe 7.0.17.0, F-Secure Anti-Virus 9.0.16160.0, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, McAfee Anti-Virus Scanning Engine 5.400.0.1158, McAfee Gateway (formerly Webwasher) 2010.1C, and nProtect Anti-Virus 2011-01-17.01 allows remote attackers to bypass malware detection via an ELF file with a ustar character sequence at a certain location. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different ELF parser implementations.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
ikarus ikarus_virus_utilities_t3_command_line_scanner 1.1.97.0
aladdin esafe 7.0.17.0
f-secure f-secure_anti-virus 9.0.16160.0
emsisoft anti-malware 5.1.0.1
mcafee scan_engine 5.400.0.1158
mcafee gateway 2010.1c
softwin bitdefender 7.2
comodo comodo_antivirus 7424
nprotect nprotect_antivirus 2011-01-17.01
CVE-2012-1430 MEDIUM

The ELF file parser in Bitdefender 7.2, Comodo Antivirus 7424, eSafe 7.0.17.0, F-Secure Anti-Virus 9.0.16160.0, McAfee Anti-Virus Scanning Engine 5.400.0.1158, McAfee Gateway (formerly Webwasher) 2010.1C, nProtect Anti-Virus 2011-01-17.01, Sophos Anti-Virus 4.61.0, and Rising Antivirus 22.83.00.03 allows remote attackers to bypass malware detection via an ELF file with a \19\04\00\10 character sequence at a certain location. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different ELF parser implementations.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
rising-global rising_antivirus 22.83.00.03
aladdin esafe 7.0.17.0
f-secure anti-virus 9.0.16160.0
mcafee scan_engine 5.400.0.1158
mcafee gateway 2010.1c
comodo comodo_antivirus 7424
sophos sophos_anti-virus 4.61.0
nprotect nprotect_antivirus 2011-01-17.01
bitdefender bitdefender 7.2
CVE-2012-1431 MEDIUM

The ELF file parser in Bitdefender 7.2, Command Antivirus 5.2.11.5, Comodo Antivirus 7424, eSafe 7.0.17.0, F-Prot Antivirus 4.6.2.117, F-Secure Anti-Virus 9.0.16160.0, McAfee Gateway (formerly Webwasher) 2010.1C, nProtect Anti-Virus 2011-01-17.01, Sophos Anti-Virus 4.61.0, and Rising Antivirus 22.83.00.03 allows remote attackers to bypass malware detection via an ELF file with a \4a\46\49\46 character sequence at a certain location. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different ELF parser implementations.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
rising-global rising_antivirus 22.83.00.03
aladdin esafe 7.0.17.0
f-secure f-secure_anti-virus 9.0.16160.0
mcafee gateway 2010.1c
authentium command_antivirus 5.2.11.5
f-prot f-prot_antivirus 4.6.2.117
comodo comodo_antivirus 7424
sophos sophos_anti-virus 4.61.0
nprotect nprotect_antivirus 2011-01-17.01
bitdefender bitdefender 7.2
CVE-2012-1442 MEDIUM

The ELF file parser in Quick Heal (aka Cat QuickHeal) 11.00, McAfee Anti-Virus Scanning Engine 5.400.0.1158, McAfee Gateway (formerly Webwasher) 2010.1C, eSafe 7.0.17.0, Kaspersky Anti-Virus 7.0.0.125, F-Secure Anti-Virus 9.0.16160.0, Sophos Anti-Virus 4.61.0, Antiy Labs AVL SDK 2.0.3.7, Rising Antivirus 22.83.00.03, Fortinet Antivirus 4.2.254.0, and Panda Antivirus 10.0.2.7 allows remote attackers to bypass malware detection via an ELF file with a modified class field. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different ELF parser implementations.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
rising-global rising_antivirus 22.83.00.03
aladdin esafe 7.0.17.0
f-secure f-secure_anti-virus 9.0.16160.0
pandasecurity panda_antivirus 10.0.2.7
antiy avl_sdk 2.0.3.7
mcafee scan_engine 5.400.0.1158
mcafee gateway 2010.1c
cat quick_heal 11.00
kaspersky kaspersky_anti-virus 7.0.0.125
sophos sophos_anti-virus 4.61.0
fortinet fortinet_antivirus 4.2.254.0
CVE-2012-1443 MEDIUM

The RAR file parser in ClamAV 0.96.4, Rising Antivirus 22.83.00.03, Quick Heal (aka Cat QuickHeal) 11.00, G Data AntiVirus 21, AVEngine 20101.3.0.103 in Symantec Endpoint Protection 11, Command Antivirus 5.2.11.5, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, Emsisoft Anti-Malware 5.1.0.1, PC Tools AntiVirus 7.0.3.5, F-Prot Antivirus 4.6.2.117, VirusBuster 13.6.151.0, Fortinet Antivirus 4.2.254.0, Antiy Labs AVL SDK 2.0.3.7, K7 AntiVirus 9.77.3565, Trend Micro HouseCall 9.120.0.1004, Kaspersky Anti-Virus 7.0.0.125, Jiangmin Antivirus 13.0.900, Antimalware Engine 1.1.6402.0 in Microsoft Security Essentials 2.0, Sophos Anti-Virus 4.61.0, NOD32 Antivirus 5795, Avira AntiVir 7.11.1.163, Norman Antivirus 6.06.12, McAfee Anti-Virus Scanning Engine 5.400.0.1158, Panda Antivirus 10.0.2.7, McAfee Gateway (formerly Webwasher) 2010.1C, Trend Micro AntiVirus 9.120.0.1004, Comodo Antivirus 7424, Bitdefender 7.2, eSafe 7.0.17.0, F-Secure Anti-Virus 9.0.16160.0, nProtect Anti-Virus 2011-01-17.01, AhnLab V3 Internet Security 2011.01.18.00, AVG Anti-Virus 10.0.0.1190, avast! Antivirus 4.8.1351.0 and 5.0.677.0, and VBA32 3.12.14.2 allows user-assisted remote attackers to bypass malware detection via a RAR file with an initial MZ character sequence. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different RAR parser implementations.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
aladdin esafe 7.0.17.0
eset nod32_antivirus 5795
cat quick_heal 11.00
f-prot f-prot_antivirus 4.6.2.117
kaspersky kaspersky_anti-virus 7.0.0.125
trendmicro housecall 9.120.0.1004
comodo comodo_antivirus 7424
fortinet fortinet_antivirus 4.2.254.0
k7computing antivirus 9.77.3565
norman norman_antivirus_&_antispyware 6.06.12
gdata-software g_data_antivirus 21
avg avg_anti-virus 10.0.0.1190
antiy avl_sdk 2.0.3.7
ahnlab v3_internet_security 2011.01.18.00
symantec endpoint_protection 11.0
authentium command_antivirus 5.2.11.5
avira antivir 7.11.1.163
nprotect nprotect_antivirus 2011-01-17.01
bitdefender bitdefender 7.2
anti-virus vba32 3.12.14.2
rising-global rising_antivirus 22.83.00.03
f-secure f-secure_anti-virus 9.0.16160.0
emsisoft anti-malware 5.1.0.1
pc_tools pc_tools_antivirus 7.0.3.5
mcafee scan_engine 5.400.0.1158
mcafee gateway 2010.1c
alwil avast_antivirus 4.8.1351.0
microsoft security_essentials 2.0
jiangmin jiangmin_antivirus 13.0.900
ikarus ikarus_virus_utilities_t3_command_line_scanner 1.1.97.0
pandasecurity panda_antivirus 10.0.2.7
alwil avast_antivirus 5.0.677.0
clamav clamav 0.96.4
virusbuster virusbuster 13.6.151.0
trendmicro trend_micro_antivirus 9.120.0.1004
sophos sophos_anti-virus 4.61.0
CVE-2012-1446 MEDIUM

The ELF file parser in Quick Heal (aka Cat QuickHeal) 11.00, McAfee Anti-Virus Scanning Engine 5.400.0.1158, AVEngine 20101.3.0.103 in Symantec Endpoint Protection 11, Norman Antivirus 6.06.12, eSafe 7.0.17.0, Kaspersky Anti-Virus 7.0.0.125, McAfee Gateway (formerly Webwasher) 2010.1C, Sophos Anti-Virus 4.61.0, CA eTrust Vet Antivirus 36.1.8511, Antiy Labs AVL SDK 2.0.3.7, PC Tools AntiVirus 7.0.3.5, Rising Antivirus 22.83.00.03, Fortinet Antivirus 4.2.254.0, and Panda Antivirus 10.0.2.7 allows remote attackers to bypass malware detection via an ELF file with a modified encoding field. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different ELF parser implementations.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
rising-global rising_antivirus 22.83.00.03
aladdin esafe 7.0.17.0
pc_tools pc_tools_antivirus 7.0.3.5
mcafee scan_engine 5.400.0.1158
mcafee gateway 2010.1c
cat quick_heal 11.00
kaspersky kaspersky_anti-virus 7.0.0.125
fortinet fortinet_antivirus 4.2.254.0
norman norman_antivirus_&_antispyware 6.06.12
pandasecurity panda_antivirus 10.0.2.7
antiy avl_sdk 2.0.3.7
symantec endpoint_protection 11.0
ca etrust_vet_antivirus 36.1.8511
sophos sophos_anti-virus 4.61.0
CVE-2012-1453 MEDIUM

The CAB file parser in Dr.Web 5.0.2.03300, Trend Micro HouseCall 9.120.0.1004, Kaspersky Anti-Virus 7.0.0.125, Sophos Anti-Virus 4.61.0, Trend Micro AntiVirus 9.120.0.1004, McAfee Gateway (formerly Webwasher) 2010.1C, Emsisoft Anti-Malware 5.1.0.1, CA eTrust Vet Antivirus 36.1.8511, Antiy Labs AVL SDK 2.0.3.7, Antimalware Engine 1.1.6402.0 in Microsoft Security Essentials 2.0, Rising Antivirus 22.83.00.03, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, Fortinet Antivirus 4.2.254.0, and Panda Antivirus 10.0.2.7 allows remote attackers to bypass malware detection via a CAB file with a modified coffFiles field. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different CAB parser implementations.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
rising-global rising_antivirus 22.83.00.03
emsisoft anti-malware 5.1.0.1
mcafee gateway 2010.1c
kaspersky kaspersky_anti-virus 7.0.0.125
trendmicro housecall 9.120.0.1004
microsoft security_essentials 2.0
fortinet fortinet_antivirus 4.2.254.0
ikarus ikarus_virus_utilities_t3_command_line_scanner 1.1.97.0
drweb dr.web_antivirus 5.0.2.03300
pandasecurity panda_antivirus 10.0.2.7
antiy avl_sdk 2.0.3.7
ca etrust_vet_antivirus 36.1.8511
trendmicro trend_micro_antivirus 9.120.0.1004
sophos sophos_anti-virus 4.61.0
CVE-2012-1454 MEDIUM

The ELF file parser in Dr.Web 5.0.2.03300, eSafe 7.0.17.0, McAfee Gateway (formerly Webwasher) 2010.1C, Rising Antivirus 22.83.00.03, Fortinet Antivirus 4.2.254.0, and Panda Antivirus 10.0.2.7 allows remote attackers to bypass malware detection via an ELF file with a modified ei_version field. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different ELF parser implementations.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
rising-global rising_antivirus 22.83.00.03
aladdin esafe 7.0.17.0
drweb dr.web_antivirus 5.0.2.03300
pandasecurity panda_antivirus 10.0.2.7
mcafee gateway 2010.1c
fortinet fortinet_antivirus 4.2.254.0
CVE-2012-1456 MEDIUM

The TAR file parser in AVG Anti-Virus 10.0.0.1190, Quick Heal (aka Cat QuickHeal) 11.00, Comodo Antivirus 7424, Emsisoft Anti-Malware 5.1.0.1, eSafe 7.0.17.0, F-Prot Antivirus 4.6.2.117, Fortinet Antivirus 4.2.254.0, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, Jiangmin Antivirus 13.0.900, Kaspersky Anti-Virus 7.0.0.125, McAfee Anti-Virus Scanning Engine 5.400.0.1158, McAfee Gateway (formerly Webwasher) 2010.1C, NOD32 Antivirus 5795, Norman Antivirus 6.06.12, Panda Antivirus 10.0.2.7, Rising Antivirus 22.83.00.03, Sophos Anti-Virus 4.61.0, AVEngine 20101.3.0.103 in Symantec Endpoint Protection 11, Trend Micro AntiVirus 9.120.0.1004, and Trend Micro HouseCall 9.120.0.1004 allows remote attackers to bypass malware detection via a TAR file with an appended ZIP file. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different TAR parser implementations.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
rising-global rising_antivirus 22.83.00.03
aladdin esafe 7.0.17.0
eset nod32_antivirus 5795
emsisoft anti-malware 5.1.0.1
mcafee scan_engine 5.400.0.1158
mcafee gateway 2010.1c
cat quick_heal 11.00
f-prot f-prot_antivirus 4.6.2.117
kaspersky kaspersky_anti-virus 7.0.0.125
trendmicro housecall 9.120.0.1004
comodo comodo_antivirus 7424
jiangmin jiangmin_antivirus 13.0.900
fortinet fortinet_antivirus 4.2.254.0
norman norman_antivirus_&_antispyware 6.06.12
ikarus ikarus_virus_utilities_t3_command_line_scanner 1.1.97.0
avg avg_anti-virus 10.0.0.1190
pandasecurity panda_antivirus 10.0.2.7
symantec endpoint_protection 11.0
trendmicro trend_micro_antivirus 9.120.0.1004
sophos sophos_anti-virus 4.61.0
CVE-2012-1457 MEDIUM

The TAR file parser in Avira AntiVir 7.11.1.163, Antiy Labs AVL SDK 2.0.3.7, avast! Antivirus 4.8.1351.0 and 5.0.677.0, AVG Anti-Virus 10.0.0.1190, Bitdefender 7.2, Quick Heal (aka Cat QuickHeal) 11.00, ClamAV 0.96.4, Command Antivirus 5.2.11.5, Emsisoft Anti-Malware 5.1.0.1, eSafe 7.0.17.0, F-Prot Antivirus 4.6.2.117, G Data AntiVirus 21, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, Jiangmin Antivirus 13.0.900, K7 AntiVirus 9.77.3565, Kaspersky Anti-Virus 7.0.0.125, McAfee Anti-Virus Scanning Engine 5.400.0.1158, McAfee Gateway (formerly Webwasher) 2010.1C, Antimalware Engine 1.1.6402.0 in Microsoft Security Essentials 2.0, NOD32 Antivirus 5795, Norman Antivirus 6.06.12, PC Tools AntiVirus 7.0.3.5, Rising Antivirus 22.83.00.03, AVEngine 20101.3.0.103 in Symantec Endpoint Protection 11, Trend Micro AntiVirus 9.120.0.1004, Trend Micro HouseCall 9.120.0.1004, VBA32 3.12.14.2, and VirusBuster 13.6.151.0 allows remote attackers to bypass malware detection via a TAR archive entry with a length field that exceeds the total TAR file size. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different TAR parser implementations.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
aladdin esafe 7.0.17.0
eset nod32_antivirus 5795
cat quick_heal 11.00
f-prot f-prot_antivirus 4.6.2.117
kaspersky kaspersky_anti-virus 7.0.0.125
trendmicro housecall 9.120.0.1004
k7computing antivirus 9.77.3565
norman norman_antivirus_&_antispyware 6.06.12
gdata-software g_data_antivirus 21
avg avg_anti-virus 10.0.0.1190
antiy avl_sdk 2.0.3.7
symantec endpoint_protection 11.0
authentium command_antivirus 5.2.11.5
avira antivir 7.11.1.163
bitdefender bitdefender 7.2
anti-virus vba32 3.12.14.2
rising-global rising_antivirus 22.83.00.03
emsisoft anti-malware 5.1.0.1
pc_tools pc_tools_antivirus 7.0.3.5
mcafee scan_engine 5.400.0.1158
mcafee gateway 2010.1c
alwil avast_antivirus 4.8.1351.0
microsoft security_essentials 2.0
jiangmin jiangmin_antivirus 13.0.900
ikarus ikarus_virus_utilities_t3_command_line_scanner 1.1.97.0
alwil avast_antivirus 5.0.677.0
clamav clamav 0.96.4
virusbuster virusbuster 13.6.151.0
trendmicro trend_micro_antivirus 9.120.0.1004
CVE-2012-1459 MEDIUM

The TAR file parser in AhnLab V3 Internet Security 2011.01.18.00, Avira AntiVir 7.11.1.163, Antiy Labs AVL SDK 2.0.3.7, avast! Antivirus 4.8.1351.0 and 5.0.677.0, AVG Anti-Virus 10.0.0.1190, Bitdefender 7.2, Quick Heal (aka Cat QuickHeal) 11.00, ClamAV 0.96.4, Command Antivirus 5.2.11.5, Comodo Antivirus 7424, Emsisoft Anti-Malware 5.1.0.1, F-Prot Antivirus 4.6.2.117, F-Secure Anti-Virus 9.0.16160.0, Fortinet Antivirus 4.2.254.0, G Data AntiVirus 21, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, Jiangmin Antivirus 13.0.900, K7 AntiVirus 9.77.3565, Kaspersky Anti-Virus 7.0.0.125, McAfee Anti-Virus Scanning Engine 5.400.0.1158, McAfee Gateway (formerly Webwasher) 2010.1C, Antimalware Engine 1.1.6402.0 in Microsoft Security Essentials 2.0, NOD32 Antivirus 5795, Norman Antivirus 6.06.12, nProtect Anti-Virus 2011-01-17.01, Panda Antivirus 10.0.2.7, PC Tools AntiVirus 7.0.3.5, Rising Antivirus 22.83.00.03, Sophos Anti-Virus 4.61.0, AVEngine 20101.3.0.103 in Symantec Endpoint Protection 11, Trend Micro AntiVirus 9.120.0.1004, Trend Micro HouseCall 9.120.0.1004, VBA32 3.12.14.2, and VirusBuster 13.6.151.0 allows remote attackers to bypass malware detection via a TAR archive entry with a length field corresponding to that entire entry, plus part of the header of the next entry. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different TAR parser implementations.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
eset nod32_antivirus 5795
cat quick_heal 11.00
f-prot f-prot_antivirus 4.6.2.117
kaspersky kaspersky_anti-virus 7.0.0.125
trendmicro housecall 9.120.0.1004
comodo comodo_antivirus 7424
fortinet fortinet_antivirus 4.2.254.0
k7computing antivirus 9.77.3565
norman norman_antivirus_&_antispyware 6.06.12
gdata-software g_data_antivirus 21
avg avg_anti-virus 10.0.0.1190
antiy avl_sdk 2.0.3.7
ahnlab v3_internet_security 2011.01.18.00
symantec endpoint_protection 11.0
authentium command_antivirus 5.2.11.5
avira antivir 7.11.1.163
nprotect nprotect_antivirus 2011-01-17.01
bitdefender bitdefender 7.2
anti-virus vba32 3.12.14.2
rising-global rising_antivirus 22.83.00.03
f-secure f-secure_anti-virus 9.0.16160.0
emsisoft anti-malware 5.1.0.1
pc_tools pc_tools_antivirus 7.0.3.5
mcafee scan_engine 5.400.0.1158
mcafee gateway 2010.1c
alwil avast_antivirus 4.8.1351.0
microsoft security_essentials 2.0
jiangmin jiangmin_antivirus 13.0.900
ikarus ikarus_virus_utilities_t3_command_line_scanner 1.1.97.0
pandasecurity panda_antivirus 10.0.2.7
alwil avast_antivirus 5.0.677.0
clamav clamav 0.96.4
virusbuster virusbuster 13.6.151.0
trendmicro trend_micro_antivirus 9.120.0.1004
sophos sophos_anti-virus 4.61.0
CVE-2012-1461 MEDIUM

The Gzip file parser in AVG Anti-Virus 10.0.0.1190, Bitdefender 7.2, Command Antivirus 5.2.11.5, Emsisoft Anti-Malware 5.1.0.1, F-Secure Anti-Virus 9.0.16160.0, Fortinet Antivirus 4.2.254.0, Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0, Jiangmin Antivirus 13.0.900, K7 AntiVirus 9.77.3565, Kaspersky Anti-Virus 7.0.0.125, McAfee Anti-Virus Scanning Engine 5.400.0.1158, McAfee Gateway (formerly Webwasher) 2010.1C, NOD32 Antivirus 5795, Norman Antivirus 6.06.12, Rising Antivirus 22.83.00.03, Sophos Anti-Virus 4.61.0, AVEngine 20101.3.0.103 in Symantec Endpoint Protection 11, Trend Micro AntiVirus 9.120.0.1004, Trend Micro HouseCall 9.120.0.1004, and VBA32 3.12.14.2 allows remote attackers to bypass malware detection via a .tar.gz file with multiple compressed streams. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different Gzip parser implementations.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
anti-virus vba32 3.12.14.2
rising-global rising_antivirus 22.83.00.03
f-secure f-secure_anti-virus 9.0.16160.0
eset nod32_antivirus 5795
emsisoft anti-malware 5.1.0.1
mcafee scan_engine 5.400.0.1158
mcafee gateway 2010.1c
kaspersky kaspersky_anti-virus 7.0.0.125
trendmicro housecall 9.120.0.1004
jiangmin jiangmin_antivirus 13.0.900
fortinet fortinet_antivirus 4.2.254.0
k7computing antivirus 9.77.3565
norman norman_antivirus_&_antispyware 6.06.12
ikarus ikarus_virus_utilities_t3_command_line_scanner 1.1.97.0
avg avg_anti-virus 10.0.0.1190
symantec endpoint_protection 11.0
authentium command_antivirus 5.2.11.5
trendmicro trend_micro_antivirus 9.120.0.1004
sophos sophos_anti-virus 4.61.0
bitdefender bitdefender 7.2
CVE-2012-1463 MEDIUM

The ELF file parser in AhnLab V3 Internet Security 2011.01.18.00, Bitdefender 7.2, Quick Heal (aka Cat QuickHeal) 11.00, Command Antivirus 5.2.11.5, Comodo Antivirus 7424, eSafe 7.0.17.0, F-Prot Antivirus 4.6.2.117, F-Secure Anti-Virus 9.0.16160.0, McAfee Anti-Virus Scanning Engine 5.400.0.1158, Norman Antivirus 6.06.12, nProtect Anti-Virus 2011-01-17.01, and Panda Antivirus 10.0.2.7 allows remote attackers to bypass malware detection via an ELF file with a modified endianness field. NOTE: this may later be SPLIT into multiple CVEs if additional information is published showing that the error occurred independently in different ELF parser implementations.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
aladdin esafe 7.0.17.0
f-secure f-secure_anti-virus 9.0.16160.0
mcafee scan_engine 5.400.0.1158
cat quick_heal 11.00
f-prot f-prot_antivirus 4.6.2.117
comodo comodo_antivirus 7424
norman norman_antivirus_&_antispyware 6.06.12
pandasecurity panda_antivirus 10.0.2.7
ahnlab v3_internet_security 2011.01.18.00
authentium command_antivirus 5.2.11.5
nprotect nprotect_antivirus 2011-01-17.01
bitdefender bitdefender 7.2
CVE-2012-2212 MEDIUM

McAfee Web Gateway 7.0 allows remote attackers to bypass the access configuration for the CONNECT method by providing an arbitrary allowed hostname in the Host HTTP header. NOTE: this issue might not be reproducible, because the researcher did not provide configuration details for the vulnerable system, and the observed behavior might be consistent with a configuration that was (perhaps inadvertently) designed to allow access based on Host HTTP headers

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
mcafee web_gateway 7.0.0
CVE-2012-5879 HIGH

An ActiveX control in McHealthCheck.dll in McAfee Virtual Technician (MVT) and ePO-MVT 6.5.0.2101 and earlier allows remote attackers to modify or create arbitrary files via a full pathname argument to the Save method.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-264,

Products Affected

Vendor Product Version
mcafee epo_mcafee_virtual_technician 1.0.7
mcafee epo_mcafee_virtual_technician 1.0.9
mcafee epo_mcafee_virtual_technician *
mcafee mcafee_virtual_technician *
mcafee epo_mcafee_virtual_technician 1.0.8
mcafee mcafee_virtual_technician 6.3.0.1911
mcafee epo_mcafee_virtual_technician 1.0
mcafee epo_mcafee_virtual_technician 1.0.4.0
CVE-2013-0140 HIGH

SQL injection vulnerability in the Agent-Handler component in McAfee ePolicy Orchestrator (ePO) before 4.5.7 and 4.6.x before 4.6.6 allows remote attackers to execute arbitrary SQL commands via a crafted request over the Agent-Server communication channel.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-89,

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator 2.0
mcafee epolicy_orchestrator 4.6.0
mcafee epolicy_orchestrator 4.5.4
mcafee epolicy_orchestrator 4.5.5
mcafee epolicy_orchestrator 2.5.1
mcafee epolicy_orchestrator 3.5.0
mcafee epolicy_orchestrator 4.5.0
mcafee epolicy_orchestrator 4.6.3
mcafee epolicy_orchestrator *
mcafee epolicy_orchestrator 3.6.0
mcafee epolicy_orchestrator 3.6.1
mcafee epolicy_orchestrator 3.0
mcafee epolicy_orchestrator 4.6.2
mcafee epolicy_orchestrator 4.6.1
mcafee epolicy_orchestrator 4.5.3
mcafee epolicy_orchestrator 4.6.5
mcafee epolicy_orchestrator 4.0
mcafee epolicy_orchestrator 4.6.4
mcafee epolicy_orchestrator 2.5
CVE-2013-0141 MEDIUM

Directory traversal vulnerability in McAfee ePolicy Orchestrator (ePO) before 4.5.7 and 4.6.x before 4.6.6 allows remote attackers to upload arbitrary files via a crafted request over the Agent-Server communication channel, as demonstrated by writing to the Software/ directory.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator 2.0
mcafee epolicy_orchestrator 4.6.0
mcafee epolicy_orchestrator 4.5.4
mcafee epolicy_orchestrator 4.5.5
mcafee epolicy_orchestrator 2.5.1
mcafee epolicy_orchestrator 3.5.0
mcafee epolicy_orchestrator 4.5.0
mcafee epolicy_orchestrator 4.6.3
mcafee epolicy_orchestrator *
mcafee epolicy_orchestrator 3.6.0
mcafee epolicy_orchestrator 3.6.1
mcafee epolicy_orchestrator 3.0
mcafee epolicy_orchestrator 4.6.2
mcafee epolicy_orchestrator 4.6.1
mcafee epolicy_orchestrator 4.5.3
mcafee epolicy_orchestrator 4.6.5
mcafee epolicy_orchestrator 4.0
mcafee epolicy_orchestrator 4.6.4
mcafee epolicy_orchestrator 2.5
CVE-2013-3627 MEDIUM

FrameworkService.exe in McAfee Framework Service in McAfee Managed Agent (MA) before 4.5.0.1927 and 4.6 before 4.6.0.3258 allows remote attackers to cause a denial of service (service crash) via a malformed HTTP request.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
mcafee agent *
CVE-2013-4882 MEDIUM

Multiple SQL injection vulnerabilities in McAfee ePolicy Orchestrator 4.6.6 and earlier, and the ePolicy Orchestrator (ePO) extension for McAfee Agent (MA) 4.5 and 4.6, allow remote authenticated users to execute arbitrary SQL commands via the uid parameter to (1) core/showRegisteredTypeDetails.do and (2) EPOAGENTMETA/DisplayMSAPropsDetail.do, a different vulnerability than CVE-2013-0140.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-89,

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator 4.6.1
mcafee epolicy_orchestrator 4.6.5
mcafee epolicy_orchestrator 4.6.0
mcafee epolicy_orchestrator 4.6.4
mcafee epolicy_orchestrator_agent 4.5
mcafee epolicy_orchestrator 4.6.3
mcafee epolicy_orchestrator *
mcafee epolicy_orchestrator 4.6.2
mcafee epolicy_orchestrator_agent 4.6
CVE-2013-4883 MEDIUM

Multiple cross-site scripting (XSS) vulnerabilities in McAfee ePolicy Orchestrator 4.6.6 and earlier, and the ePO Extension for the McAfee Agent (MA) 4.5 through 4.6, allow remote attackers to inject arbitrary web script or HTML via the (1) instanceId parameter core/loadDisplayType.do; (2) instanceId or (3) monitorUrl parameter to console/createDashboardContainer.do; uid parameter to (4) ComputerMgmt/sysDetPanelBoolPie.do or (5) ComputerMgmt/sysDetPanelSummary.do; (6) uid, (7) orion.user.security.token, or (8) ajaxMode parameter to ComputerMgmt/sysDetPanelQry.do; or (9) uid, (10) orion.user.security.token, or (11) ajaxMode parameter to ComputerMgmt/sysDetPanelSummary.do.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator 4.6.1
mcafee epolicy_orchestrator 4.6.5
mcafee epolicy_orchestrator 4.6.0
mcafee epolicy_orchestrator 4.6.4
mcafee epolicy_orchestrator_agent 4.5
mcafee epolicy_orchestrator 4.6.3
mcafee epolicy_orchestrator *
mcafee epolicy_orchestrator 4.6.2
mcafee epolicy_orchestrator_agent 4.6
CVE-2013-4884 MEDIUM

Cross-site scripting (XSS) vulnerability in McAfee SuperScan 4.0 allows remote attackers to inject arbitrary web script or HTML via UTF-7 encoded sequences in a server response, which is not properly handled in the SuperScan HTML report.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mcafee superscan 4.0
CVE-2013-5094 MEDIUM

Cross-site scripting (XSS) vulnerability in index.exp in McAfee Vulnerability Manager 7.5 allows remote attackers to inject arbitrary web script or HTML via the cert_cn cookie parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mcafee vulnerability_manager 7.5
CVE-2013-6349 HIGH

McAfee Email Gateway (MEG) 7.0 before 7.0.4 and 7.5 before 7.5.1 allows remote authenticated users to execute arbitrary commands via unspecified vectors.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-94,

Products Affected

Vendor Product Version
mcafee email_gateway 7.0.1
mcafee email_gateway 7.0.3
mcafee email_gateway 7.5
mcafee email_gateway 7.0.2
CVE-2013-7092 MEDIUM

Multiple SQL injection vulnerabilities in /admin/cgi-bin/rpc/doReport/18 in McAfee Email Gateway 7.6 allow remote authenticated users to execute arbitrary SQL commands via the (1) events_col, (2) event_id, (3) reason, (4) events_order, (5) emailstatus_order, or (6) emailstatus_col JSON keys.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-89,

Products Affected

Vendor Product Version
mcafee email_gateway 7.6
CVE-2013-7103 HIGH

McAfee Email Gateway 7.6 allows remote authenticated administrators to execute arbitrary commands via shell metacharacters in the value attribute in a (1) TestFile XML element or the (2) hostname. NOTE: this issue can be combined with CVE-2013-7092 to allow remote attackers to execute commands.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-78,

Products Affected

Vendor Product Version
mcafee email_gateway 7.6
CVE-2013-7104 HIGH

McAfee Email Gateway 7.6 allows remote authenticated administrators to execute arbitrary commands by specifying them in the value attribute in a (1) Command or (2) Script XML element. NOTE: this issue can be combined with CVE-2013-7092 to allow remote attackers to execute commands.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-78,

Products Affected

Vendor Product Version
mcafee email_gateway 7.6
CVE-2013-7460 LOW

A write protection and execution bypass vulnerability in McAfee (now Intel Security) Application Control (MAC) 6.1.0 for Linux and earlier allows authenticated users to change binaries that are part of the Application Control whitelist and allows execution of binaries via specific conditions.

CVSS 2.0

Severity: LOW

Problem Type: CWE-284,

Products Affected

Vendor Product Version
mcafee change_control *
mcafee application_control *
CVE-2013-7461 LOW

A write protection and execution bypass vulnerability in McAfee (now Intel Security) Change Control (MCC) 6.1.0 for Linux and earlier allows authenticated users to change files that are part of write protection rules via specific conditions.

CVSS 2.0

Severity: LOW

Problem Type: CWE-284,

Products Affected

Vendor Product Version
mcafee change_control *
mcafee application_control *
CVE-2013-7462 MEDIUM

A directory traversal vulnerability in the web application in McAfee (now Intel Security) SaaS Control Console (SCC) Platform 6.14 before patch 1070, and 6.15 before patch 1076 allows unauthenticated users to view contents of arbitrary system files that did not have file system level read access restrictions via a null-byte injection exploit.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
mcafee saas_control_console_platform *
CVE-2014-1472 MEDIUM

Multiple cross-site scripting (XSS) vulnerabilities in the Enterprise Manager in McAfee Vulnerability Manager (MVM) 7.5.5 and earlier allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mcafee vulnerability_manager 7.5.4
mcafee vulnerability_manager 7.0.11
mcafee vulnerability_manager *
CVE-2014-1473 MEDIUM

Multiple cross-site request forgery (CSRF) vulnerabilities in the Enterprise Manager in McAfee Vulnerability Manager (MVM) 7.5.5 and earlier allow remote attackers to hijack the authentication of users for requests that modify HTML via unspecified vectors related to the "response web page."

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
mcafee vulnerability_manager 7.5.4
mcafee vulnerability_manager 7.0.11
mcafee vulnerability_manager *
CVE-2014-2205 MEDIUM

The Import and Export Framework in McAfee ePolicy Orchestrator (ePO) before 4.6.7 Hotfix 940148 allows remote authenticated users with permissions to add dashboards to read arbitrary files by importing a crafted XML file, related to an XML External Entity (XXE) issue.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator 4.6.1
mcafee epolicy_orchestrator 4.6.5
mcafee epolicy_orchestrator 4.6.0
mcafee epolicy_orchestrator 4.6.4
mcafee epolicy_orchestrator 4.6.6
mcafee epolicy_orchestrator 4.6.3
mcafee epolicy_orchestrator *
mcafee epolicy_orchestrator 4.6.2
CVE-2014-2390 MEDIUM

Cross-site request forgery (CSRF) vulnerability in the User Management module in McAfee Network Security Manager (NSM) before 6.1.15.39 7.1.5.x before 7.1.5.15, 7.1.15.x before 7.1.15.7, 7.5.x before 7.5.5.9, and 8.x before 8.1.7.3 allows remote attackers to hijack the authentication of users for requests that modify user accounts via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
mcafee network_security_manager *
CVE-2014-2535 MEDIUM

Directory traversal vulnerability in McAfee Web Gateway (MWG) 7.4.x before 7.4.1, 7.3.x before 7.3.2.6, and 7.2.0.9 and earlier allows remote authenticated users to read arbitrary files via a crafted request to the web filtering port.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
mcafee web_gateway *
CVE-2014-2536 MEDIUM

Directory traversal vulnerability in McAfee Cloud Identity Manager 3.0, 3.1, and 3.5.1, McAfee Cloud Single Sign On (MCSSO) before 4.0.1, and Intel Expressway Cloud Access 360-SSO 2.1 and 2.5 allows remote authenticated users to read an unspecified file containing a hash of the administrator password via unknown vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
intel expressway_cloud_access_360 2.5
mcafee cloud_identity_manager 3.1
mcafee cloud_identity_manager 3.0
intel expressway_cloud_access_360 2.1
mcafee cloud_identity_manager 3.5.1
mcafee cloud_single_sign_on 4.0.0
CVE-2014-2586 MEDIUM

Cross-site scripting (XSS) vulnerability in the login audit form in McAfee Cloud Single Sign On (SSO) allows remote attackers to inject arbitrary web script or HTML via a crafted password.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mcafee cloud_single_sign_on -
CVE-2014-2587 MEDIUM

SQL injection vulnerability in jsp/reports/ReportsAudit.jsp in McAfee Asset Manager 6.6 allows remote authenticated users to execute arbitrary SQL commands via the username of an audit report (aka user parameter).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-89,

Products Affected

Vendor Product Version
mcafee asset_manager 6.6
CVE-2014-2588 MEDIUM

Directory traversal vulnerability in servlet/downloadReport in McAfee Asset Manager 6.6 allows remote authenticated users to read arbitrary files via a .. (dot dot) in the reportFileName parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
mcafee asset_manager 6.6
CVE-2014-6064 MEDIUM

The Accounts tab in the administrative user interface in McAfee Web Gateway (MWG) before 7.3.2.9 and 7.4.x before 7.4.2 allows remote authenticated users to obtain the hashed user passwords via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mcafee web_gateway *
CVE-2014-8518 LOW

The (1) Removable Media and (2) CD and DVD encryption offsite access options (formerly Endpoint Encryption for Removable Media or EERM) in McAfee File and Removable Media Protection (FRP) 4.3.0.x, and Endpoint Encryption for Files and Folders (EEFF) 3.2.x through 4.2.x, uses a hard-coded salt, which makes it easier for local users to obtain passwords via a brute force attack.

CVSS 2.0

Severity: LOW

Problem Type: CWE-255,

Products Affected

Vendor Product Version
mcafee endpoint_encryption_for_files_and_folders 3.2.6.3
mcafee endpoint_encryption_for_files_and_folders 3.2.2.0
mcafee endpoint_encryption_for_files_and_folders 4.0.0.0
mcafee endpoint_encryption_for_files_and_folders 3.2.4.1
mcafee endpoint_encryption_for_files_and_folders 3.2.7
mcafee endpoint_encryption_for_files_and_folders 3.2.8
mcafee endpoint_encryption_for_files_and_folders 3.2.5.0
mcafee file_and_removable_media_protection 4.3.0.224
mcafee endpoint_encryption_for_files_and_folders 3.2.0.0
mcafee endpoint_encryption_for_files_and_folders 4.0.1.0
mcafee endpoint_encryption_for_files_and_folders 3.2.9.0
mcafee endpoint_encryption_for_files_and_folders 4.0.0
mcafee endpoint_encryption_for_files_and_folders 4.0.1
mcafee endpoint_encryption_for_files_and_folders 4.1.0
mcafee endpoint_encryption_for_files_and_folders 4.2.0
mcafee endpoint_encryption_for_files_and_folders 4.1.1
mcafee endpoint_encryption_for_files_and_folders 3.2.6
mcafee endpoint_encryption_for_files_and_folders 3.2.7.0
mcafee file_and_removable_media_protection 4.3.0.243
mcafee endpoint_encryption_for_files_and_folders 3.2.1.0
mcafee file_and_removable_media_protection 4.3.0
CVE-2014-8519 LOW

Unspecified vulnerability in McAfee Network Data Loss Prevention (NDLP) before 9.2.2 allows local users to read arbitrary files via unknown vectors.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mcafee network_data_loss_prevention 8.6
mcafee network_data_loss_prevention 9.2.0
mcafee network_data_loss_prevention *
CVE-2014-8520 MEDIUM

McAfee Network Data Loss Prevention (NDLP) before 9.3 allows remote attackers to obtain sensitive information via vectors related to open network ports.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mcafee network_data_loss_prevention 8.6
mcafee network_data_loss_prevention 9.2.0
mcafee network_data_loss_prevention 9.2.1
mcafee network_data_loss_prevention *
CVE-2014-8521 LOW

Cross-site scripting (XSS) vulnerability in McAfee Network Data Loss Prevention (NDLP) before 9.3 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

CVSS 2.0

Severity: LOW

Problem Type: CWE-352,

Products Affected

Vendor Product Version
mcafee network_data_loss_prevention 8.6
mcafee network_data_loss_prevention 9.2.0
mcafee network_data_loss_prevention 9.2.1
mcafee network_data_loss_prevention *
CVE-2014-8522 HIGH

The MySQL database in McAfee Network Data Loss Prevention (NDLP) before 9.3 does not require a password, which makes it easier for remote attackers to obtain access.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-287,

Products Affected

Vendor Product Version
mcafee network_data_loss_prevention 8.6
mcafee network_data_loss_prevention 9.2.0
mcafee network_data_loss_prevention 9.2.1
mcafee network_data_loss_prevention *
CVE-2014-8523 MEDIUM

Cross-site request forgery (CSRF) vulnerability in McAfee Network Data Loss Prevention (NDLP) before 9.3 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
mcafee network_data_loss_prevention 8.6
mcafee network_data_loss_prevention 9.2.0
mcafee network_data_loss_prevention 9.2.1
mcafee network_data_loss_prevention *
CVE-2014-8524 MEDIUM

McAfee Network Data Loss Prevention (NDLP) before 9.3 does not disable the autocomplete setting for the password and other fields, which allows remote attackers to obtain sensitive information via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mcafee network_data_loss_prevention 8.6
mcafee network_data_loss_prevention 9.2.0
mcafee network_data_loss_prevention 9.2.1
mcafee network_data_loss_prevention *
CVE-2014-8525 MEDIUM

McAfee Network Data Loss Prevention (NDLP) before 9.3 does not include the HTTPOnly flag in a Set-Cookie header for the session cookie, which makes it easier for remote attackers to obtain potentially sensitive information via script access to this cookie.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mcafee network_data_loss_prevention 8.6
mcafee network_data_loss_prevention 9.2.0
mcafee network_data_loss_prevention 9.2.1
mcafee network_data_loss_prevention *
CVE-2014-8526 LOW

McAfee Network Data Loss Prevention (NDLP) before 9.3 allows local users to obtain sensitive information by reading a Java stack trace.

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mcafee network_data_loss_prevention 8.6
mcafee network_data_loss_prevention 9.2.0
mcafee network_data_loss_prevention 9.2.1
mcafee network_data_loss_prevention *
CVE-2014-8527 LOW

McAfee Network Data Loss Prevention (NDLP) before 9.3 allows local users to obtain sensitive information and affect integrity via vectors related to a "plain text password."

CVSS 2.0

Severity: LOW

Problem Type: CWE-255,

Products Affected

Vendor Product Version
mcafee network_data_loss_prevention 8.6
mcafee network_data_loss_prevention 9.2.0
mcafee network_data_loss_prevention 9.2.1
mcafee network_data_loss_prevention *
CVE-2014-8528 LOW

McAfee Network Data Loss Prevention (NDLP) before 9.3 logs session IDs, which allows local users to obtain sensitive information by reading the audit log.

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mcafee network_data_loss_prevention 8.6
mcafee network_data_loss_prevention 9.2.0
mcafee network_data_loss_prevention 9.2.1
mcafee network_data_loss_prevention *
CVE-2014-8529 LOW

McAfee Network Data Loss Prevention (NDLP) before 9.3 stores the SSH key in cleartext, which allows local users to obtain sensitive information via unspecified vectors.

CVSS 2.0

Severity: LOW

Problem Type: CWE-310,

Products Affected

Vendor Product Version
mcafee network_data_loss_prevention 8.6
mcafee network_data_loss_prevention 9.2.0
mcafee network_data_loss_prevention 9.2.1
mcafee network_data_loss_prevention *
CVE-2014-8530 HIGH

Unspecified vulnerability in McAfee Network Data Loss Prevention (NDLP) before 9.3 allows remote attackers to obtain sensitive information, affect integrity, or cause a denial of service via unknown vectors, related to simultaneous logins.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mcafee network_data_loss_prevention 8.6
mcafee network_data_loss_prevention 9.2.0
mcafee network_data_loss_prevention 9.2.1
mcafee network_data_loss_prevention *
CVE-2014-8531 MEDIUM

The TLS/SSL Server in McAfee Network Data Loss Prevention (NDLP) before 9.3 uses weak cipher algorithms, which makes it easier for remote authenticated users to execute arbitrary code via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-310,

Products Affected

Vendor Product Version
mcafee network_data_loss_prevention 8.6
mcafee network_data_loss_prevention 9.2.0
mcafee network_data_loss_prevention 9.2.1
mcafee network_data_loss_prevention *
CVE-2014-8532 LOW

Unspecified vulnerability in McAfee Network Data Loss Prevention before (NDLP) before 9.3 allows local users to obtain sensitive information and impact integrity via unknown vectors, related to partition mounting.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mcafee network_data_loss_prevention 8.6
mcafee network_data_loss_prevention 9.2.0
mcafee network_data_loss_prevention 9.2.1
mcafee network_data_loss_prevention *
CVE-2014-8533 HIGH

McAfee Network Data Loss Prevention (NDLP) before 9.3 allows remote attackers to execute arbitrary code via vectors related to ICMP redirection.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mcafee network_data_loss_prevention 8.6
mcafee network_data_loss_prevention 9.2.0
mcafee network_data_loss_prevention 9.2.1
mcafee network_data_loss_prevention *
CVE-2014-8534 LOW

Unspecified vulnerability in the login form in McAfee Network Data Loss Prevention (NDLP) before 9.2.2 allows local users to cause a denial of service via a crafted value in the domain field.

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mcafee network_data_loss_prevention 8.6
mcafee network_data_loss_prevention 9.2.0
mcafee network_data_loss_prevention *
CVE-2014-8535 MEDIUM

McAfee Network Data Loss Prevention (NDLP) before 9.2.2 allows local users to bypass intended restriction on unspecified functionality via unknown vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mcafee network_data_loss_prevention 8.6
mcafee network_data_loss_prevention 9.2.0
mcafee network_data_loss_prevention *
CVE-2014-8536 LOW

McAfee Network Data Loss Prevention (NDLP) before 9.2.2 allows local users to obtain sensitive information by reading unspecified error messages.

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mcafee network_data_loss_prevention 8.6
mcafee network_data_loss_prevention 9.2.0
mcafee network_data_loss_prevention *
CVE-2014-8537 LOW

McAfee Network Data Loss Prevention (NDLP) before 9.2.2 allows local users to obtain sensitive information by reading the logs.

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mcafee network_data_loss_prevention 8.6
mcafee network_data_loss_prevention 9.2.0
mcafee network_data_loss_prevention *
CVE-2014-9920 MEDIUM

Unauthorized execution of binary vulnerability in McAfee (now Intel Security) McAfee Application Control (MAC) 6.0.0 before hotfix 9726, 6.0.1 before hotfix 9068, 6.1.0 before hotfix 692, 6.1.1 before hotfix 399, 6.1.2 before hotfix 426, and 6.1.3 before hotfix 357 and earlier allows attackers to create a malformed Windows binary that is considered non-executable and is not protected through the whitelisting protection feature via a specific set of circumstances.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-284,

Products Affected

Vendor Product Version
mcafee application_control 6.1.3
mcafee application_control 6.1.0
mcafee application_control 6.1.1
mcafee application_control 6.0.1
mcafee application_control 6.1.2
mcafee application_control 6.0.0
CVE-2014-9921 HIGH

Information disclosure vulnerability in McAfee (now Intel Security) Cloud Analysis and Deconstructive Services (CADS) 1.0.0.3x, 1.0.0.4d and earlier allows remote unauthenticated users to view, add, and remove users via a configuration error.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-264,

Products Affected

Vendor Product Version
mcafee cloud_analysis_and_deconstructive_services *
mcafee cloud_analysis_and_deconstructive_services 1.0.0.3
CVE-2015-0921 MEDIUM

XML external entity (XXE) vulnerability in the Server Task Log in McAfee ePolicy Orchestrator (ePO) before 4.6.9 and 5.x before 5.1.2 allows remote authenticated users to read arbitrary files via the conditionXML parameter to the taskLogTable to orionUpdateTableFilter.do.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator 5.0.0
mcafee epolicy_orchestrator *
mcafee epolicy_orchestrator 5.1.1
mcafee epolicy_orchestrator 5.1.0
mcafee epolicy_orchestrator 5.0.1
CVE-2015-0922 MEDIUM

McAfee ePolicy Orchestrator (ePO) before 4.6.9 and 5.x before 5.1.2 uses the same secret key across different customers' installations, which allows attackers to obtain the administrator password by leveraging knowledge of the encrypted password.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator 5.0.0
mcafee epolicy_orchestrator *
mcafee epolicy_orchestrator 5.1.1
mcafee epolicy_orchestrator 5.1.0
mcafee epolicy_orchestrator 5.0.1
CVE-2015-1305 MEDIUM

McAfee Data Loss Prevention Endpoint (DLPe) before 9.3.400 allows local users to write to arbitrary memory locations, and consequently gain privileges, via a crafted (1) 0x00224014 or (2) 0x0022c018 IOCTL call.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
mcafee data_loss_prevention_endpoint *
CVE-2015-1616 MEDIUM

SQL injection vulnerability in the ePO extension in McAfee Data Loss Prevention Endpoint (DLPe) before 9.3.400 allows remote authenticated ePO users to execute arbitrary SQL commands via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-89,

Products Affected

Vendor Product Version
mcafee data_loss_prevention_endpoint *
CVE-2015-1617 LOW

Cross-site scripting (XSS) vulnerability in the ePO extension in McAfee Data Loss Prevention Endpoint (DLPe) before 9.3.400 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mcafee data_loss_prevention_endpoint *
CVE-2015-1618 MEDIUM

The ePO extension in McAfee Data Loss Prevention Endpoint (DLPe) before 9.3.400 allows remote authenticated users to obtain sensitive password information via a crafted URL.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mcafee data_loss_prevention_endpoint *
CVE-2015-1619 LOW

Cross-site scripting (XSS) vulnerability in the Secure Web Mail Client user interface in McAfee Email Gateway (MEG) 7.6.x before 7.6.3.2, 7.5.x before 75.6, 7.0.x through 7.0.5, 5.6, and earlier allows remote authenticated users to inject arbitrary web script or HTML via unspecified tokens in Digest messages.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mcafee email_gateway 7.0.3
mcafee email_gateway 7.0.5
mcafee email_gateway 7.5
mcafee email_gateway 7.6.3
mcafee email_gateway 7.6
mcafee email_gateway 7.0
mcafee email_gateway 7.0.4
mcafee email_gateway 7.6.1
mcafee email_gateway 7.6.2
mcafee email_gateway 7.5.2
mcafee email_gateway 7.0.1
mcafee email_gateway *
mcafee email_gateway 7.5.5
mcafee email_gateway 7.5.1
mcafee email_gateway 7.0.2
mcafee email_gateway 7.5.4
mcafee email_gateway 7.5.3
CVE-2015-2053 MEDIUM

The log viewer in McAfee Agent (MA) before 4.8.0 Patch 3 and 5.0.0, when the "Accept connections only from the ePO server" option is disabled, allows remote attackers to conduct clickjacking attacks via a crafted web page, aka an "http-generic-click-jacking" vulnerability.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
mcafee mcafee_agent *
mcafee mcafee_agent 5.0.0
CVE-2015-2757 MEDIUM

The ePO extension in McAfee Data Loss Prevention Endpoint (DLPe) before 9.3 Patch 4 Hotfix 16 (9.3.416.4) allows remote authenticated users to cause a denial of service (database lock or license corruption) via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-399,

Products Affected

Vendor Product Version
mcafee data_loss_prevention_endpoint *
CVE-2015-2758 MEDIUM

The ePO extension in McAfee Data Loss Prevention Endpoint (DLPe) before 9.3 Patch 4 Hotfix 16 (9.3.416.4) allows remote authenticated users to obtain sensitive information, modify the database, or possibly have other unspecified impact via a crafted URL.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
mcafee data_loss_prevention_endpoint *
CVE-2015-2759 MEDIUM

Multiple cross-site request forgery (CSRF) vulnerabilities in the ePO extension in McAfee Data Loss Prevention Endpoint (DLPe) before 9.3 Patch 4 Hotfix 16 (9.3.416.4) allow remote attackers to hijack the authentication of users for requests that (1) obtain sensitive information or (2) modify the database via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
mcafee data_loss_prevention_endpoint *
CVE-2015-2760 LOW

Cross-site scripting (XSS) vulnerability in the ePO extension in McAfee Data Loss Prevention Endpoint (DLPe) before 9.3 Patch 4 Hotfix 16 (9.3.416.4) allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mcafee data_loss_prevention_endpoint *
CVE-2015-2859 MEDIUM

Intel McAfee ePolicy Orchestrator (ePO) 4.x through 4.6.9 and 5.x through 5.1.2 does not validate server names and Certification Authority names in X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-310,

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator 5.1.2
mcafee epolicy_orchestrator 4.6.0
mcafee epolicy_orchestrator 4.5.4
mcafee epolicy_orchestrator 4.5.5
mcafee epolicy_orchestrator 4.5.0
mcafee epolicy_orchestrator 4.6.3
mcafee epolicy_orchestrator 5.1.1
mcafee epolicy_orchestrator 4.6.8
mcafee epolicy_orchestrator 5.0.1
mcafee epolicy_orchestrator 4.6.2
mcafee epolicy_orchestrator 4.6.1
mcafee epolicy_orchestrator 4.5.6
mcafee epolicy_orchestrator 4.5.3
mcafee epolicy_orchestrator 4.6.5
mcafee epolicy_orchestrator 5.0.0
mcafee epolicy_orchestrator 4.0
mcafee epolicy_orchestrator 4.6.4
mcafee epolicy_orchestrator 4.6.6
mcafee epolicy_orchestrator 4.6.9
mcafee epolicy_orchestrator 5.1.0
mcafee epolicy_orchestrator 4.5.7
mcafee epolicy_orchestrator 4.6.7
CVE-2015-3028 MEDIUM

McAfee Advanced Threat Defense (MATD) before 3.4.4.63 allows remote authenticated users to bypass intended restrictions and change or update configuration settings via crafted parameters.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
mcafee advanced_threat_defense *
CVE-2015-3029 MEDIUM

The web interface in McAfee Advanced Threat Defense (MATD) before 3.4.4.63 does not properly restrict access, which allows remote authenticated users to obtain sensitive information via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
mcafee advanced_threat_defense *
CVE-2015-3030 MEDIUM

The web interface in McAfee Advanced Threat Defense (MATD) before 3.4.4.63 allows remote authenticated users to obtain sensitive configuration information via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mcafee advanced_threat_defense *
CVE-2015-3987 HIGH

Multiple unquoted Windows search path vulnerabilities in the (1) Client Management and (2) Gateway in McAfee ePO Deep Command 2.1 and 2.2 before HF 1058831 allow local users to gain privileges via unspecified vectors.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-426,

Products Affected

Vendor Product Version
mcafee epo_deep_command 2.2
mcafee epo_deep_command 2.1
CVE-2015-4559 MEDIUM

Cross-site scripting (XSS) vulnerability in the product deployment feature in the Java core web services in Intel McAfee ePolicy Orchestrator (ePO) before 5.1.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator *
CVE-2015-7237 MEDIUM

Directory traversal vulnerability in the remote log viewing functionality in McAfee Agent (MA) 5.x before 5.0.2 allows remote attackers to obtain sensitive information via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
mcafee mcafee_agent 5.0.1
mcafee mcafee_agent 5.0.0
CVE-2015-7238 LOW

The Secondary server in Threat Intelligence Exchange (TIE) before 1.2.0 uses weak permissions for unspecified (1) configuration files and (2) installation logs, which allows local users to obtain sensitive information by reading the files.

CVSS 2.0

Severity: LOW

Problem Type: CWE-264,

Products Affected

Vendor Product Version
mcafee threat_intelligence_exchange *
CVE-2015-7310 MEDIUM

McAfee Enterprise Security Manager (ESM), Enterprise Security Manager/Log Manager (ESMLM), and Enterprise Security Manager/Receiver (ESMREC) before 9.3.2MR18, 9.4.x before 9.4.2MR8, and 9.5.x before 9.5.0MR7 allow remote authenticated users to execute arbitrary OS commands via a crafted filename, which is not properly handled when downloading the file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-78,

Products Affected

Vendor Product Version
mcafee enterprise_security_manager *
mcafee enterprise_security_manager/receiver *
mcafee enterprise_security_manager/log_manager *
CVE-2015-7612 MEDIUM

Multiple cross-site request forgery (CSRF) vulnerabilities in the Organizations page in Enterprise Manager in McAfee Vulnerability Manager (MVM) 7.5.9 and earlier allow remote attackers to hijack the authentication of administrators for requests that have unspecified impact via unknown vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
mcafee vulnerability_manager *
CVE-2015-7704 MEDIUM

The ntpd client in NTP 4.x before 4.2.8p4 and 4.3.x before 4.3.77 allows remote attackers to cause a denial of service via a number of crafted "KOD" messages.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
redhat enterprise_linux_server_aus 6.5
redhat enterprise_linux_server_tus 7.6
redhat enterprise_linux_workstation 6.0
netapp oncommand_unified_manager -
redhat enterprise_linux_server_eus 7.4
redhat enterprise_linux_server_aus 6.6
netapp oncommand_performance_manager -
citrix xenserver 6.5
debian debian_linux 9.0
redhat enterprise_linux_server_aus 7.6
redhat enterprise_linux_server 6.0
redhat enterprise_linux_server_eus 7.6
netapp data_ontap -
redhat enterprise_linux_server_tus 7.3
redhat enterprise_linux_server_aus 7.7
redhat enterprise_linux_server_eus 6.5
redhat enterprise_linux_server_aus 7.4
redhat enterprise_linux_desktop 6.0
redhat enterprise_linux_server 7.0
citrix xenserver 7.0
mcafee enterprise_security_manager *
redhat enterprise_linux_desktop 7.0
redhat enterprise_linux_server_eus 6.6
debian debian_linux 8.0
redhat enterprise_linux_server_eus 6.7
redhat enterprise_linux_server_tus 7.7
ntp ntp 4.2.8
redhat enterprise_linux_server_eus 7.3
netapp clustered_data_ontap -
citrix xenserver 6.2.0
redhat enterprise_linux_server_eus 7.5
debian debian_linux 7.0
redhat enterprise_linux_server_tus 6.5
redhat enterprise_linux_server_tus 6.6
redhat enterprise_linux_server_eus 7.1
redhat enterprise_linux_server_eus 7.7
ntp ntp *
redhat enterprise_linux_workstation 7.0
redhat enterprise_linux_server_aus 7.3
citrix xenserver 6.0.2
CVE-2015-8024 HIGH

McAfee Enterprise Security Manager (ESM), Enterprise Security Manager/Log Manager (ESMLM), and Enterprise Security Manager/Receiver (ESMREC) 9.3.x before 9.3.2MR19, 9.4.x before 9.4.2MR9, and 9.5.x before 9.5.0MR8, when configured to use Active Directory or LDAP authentication sources, allow remote attackers to bypass authentication by logging in with the username "NGCP|NGCP|NGCP;" and any password.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-78,

Products Affected

Vendor Product Version
mcafee mcafee_enterprise_security_manager 9.4.2
mcafee mcafee_enterprise_security_manager 9.3.2
mcafee mcafee_enterprise_security_manager 9.4.0
mcafee mcafee_enterprise_security_manager 9.4.1
mcafee mcafee_enterprise_security_manager 9.3.0
mcafee mcafee_enterprise_security_manager 9.5.0
mcafee mcafee_enterprise_security_manager 9.3.1
CVE-2015-8577 LOW

The Buffer Overflow Protection (BOP) feature in McAfee VirusScan Enterprise before 8.8 Patch 6 allocates memory with Read, Write, Execute (RWX) permissions at predictable addresses on 32-bit platforms when protecting another application, which allows attackers to bypass the DEP and ASLR protection mechanisms via unspecified vectors.

CVSS 2.0

Severity: LOW

Problem Type: CWE-264,

Products Affected

Vendor Product Version
mcafee virusscan_enterprise *
CVE-2015-8765 HIGH

Intel McAfee ePolicy Orchestrator (ePO) 4.6.9 and earlier, 5.0.x, 5.1.x before 5.1.3 Hotfix 1106041, and 5.3.x before 5.3.1 Hotfix 1106041 allow remote attackers to execute arbitrary code via a crafted serialized Java object, related to the Apache Commons Collections (ACC) library.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator *
CVE-2015-8772 HIGH

McPvDrv.sys 4.6.111.0 in McAfee File Lock 5.x in McAfee Total Protection allows local users to obtain sensitive information from kernel memory or cause a denial of service (system crash) via a large VERIFY_INFORMATION.Length value in an IOCTL_DISK_VERIFY ioctl call.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-19,

Products Affected

Vendor Product Version
mcafee file_lock 5.0
CVE-2015-8773 HIGH

Stack-based buffer overflow in McPvDrv.sys 4.6.111.0 in McAfee File Lock 5.x in McAfee Total Protection allows attackers to cause a denial of service (system crash) via a long vault GUID in an ioctl call.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
mcafee file_lock 5.0
CVE-2015-8986 MEDIUM

Sandbox detection evasion vulnerability in hardware appliances in McAfee (now Intel Security) Advanced Threat Defense (MATD) 3.4.2.32 and earlier allows attackers to detect the sandbox environment, then bypass proper malware detection resulting in failure to detect a malware file (false-negative) via specially crafted malware.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-254,

Products Affected

Vendor Product Version
mcafee advanced_threat_defense *
CVE-2015-8987 LOW

Man-in-the-middle (MitM) attack vulnerability in non-Mac OS agents in McAfee (now Intel Security) Agent (MA) 4.8.0 patch 2 and earlier allows attackers to make a McAfee Agent talk with another, possibly rogue, ePO server via McAfee Agent migration to another ePO server.

CVSS 2.0

Severity: LOW

Problem Type: CWE-284,

Products Affected

Vendor Product Version
mcafee agent *
CVE-2015-8988 MEDIUM

Unquoted executable path vulnerability in Client Management and Gateway components in McAfee (now Intel Security) ePO Deep Command (eDC) 2.2 and 2.1 allows authenticated users to execute a command of their choice via dropping a malicious file for the path.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-77,

Products Affected

Vendor Product Version
mcafee epo_deep_command 2.2
mcafee epo_deep_command 2.1
CVE-2015-8989 MEDIUM

Unsalted password vulnerability in the Enterprise Manager (web portal) component in Intel Security McAfee Vulnerability Manager (MVM) 7.5.8 and earlier allows attackers to more easily decrypt user passwords via brute force attacks against the database.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-310,

Products Affected

Vendor Product Version
mcafee vulnerability_manager *
CVE-2015-8990 MEDIUM

Detection bypass vulnerability in Intel Security Advanced Threat Defense (ATD) 3.4.6 and earlier allows malware samples to bypass ATD detection via renaming the malware.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-254,

Products Affected

Vendor Product Version
mcafee advanced_threat_defense *
CVE-2015-8991 MEDIUM

Malicious file execution vulnerability in Intel Security McAfee Security Scan+ (MSS+) before 3.11.266.3 allows attackers to make the product momentarily vulnerable via executing preexisting specifically crafted malware during installation or uninstallation, but not during normal operation.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
mcafee security_webadvisor 3.7.2
mcafee security_webadvisor 4.0.1
mcafee security_webadvisor 4.0.2
mcafee cloud_av -
mcafee security_scan_plus -
CVE-2015-8992 MEDIUM

Malicious file execution vulnerability in Intel Security WebAdvisor before 4.0.2, 4.0.1 and 3.7.2 allows attackers to make the product momentarily vulnerable via executing preexisting specifically crafted malware during installation or uninstallation, but not during normal operation.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
mcafee security_webadvisor 3.7.2
mcafee security_webadvisor 4.0.1
mcafee security_webadvisor 4.0.2
mcafee cloud_av -
mcafee security_scan_plus -
CVE-2015-8993 MEDIUM

Malicious file execution vulnerability in Intel Security CloudAV (Beta) before 0.5.0.151.3 allows attackers to make the product momentarily vulnerable via executing preexisting specifically crafted malware during installation or uninstallation, but not during normal operation.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
mcafee security_webadvisor 3.7.2
mcafee security_webadvisor 4.0.1
mcafee security_webadvisor 4.0.2
mcafee cloud_av -
mcafee security_scan_plus -
CVE-2016-0718 HIGH

Expat allows context-dependent attackers to cause a denial of service (crash) or possibly execute arbitrary code via a malformed input document, which triggers a buffer overflow.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
suse linux_enterprise_debuginfo 11
mcafee policy_auditor *
libexpat_project libexpat *
debian debian_linux 8.0
suse linux_enterprise_software_development_kit 12
suse studio_onsite 1.3
suse linux_enterprise_software_development_kit 11
canonical ubuntu_linux 16.04
canonical ubuntu_linux 12.04
opensuse opensuse 13.1
apple mac_os_x *
python python *
suse linux_enterprise_server 12
opensuse leap 42.1
suse linux_enterprise_server 11
opensuse opensuse 13.2
mozilla firefox *
canonical ubuntu_linux 14.04
suse linux_enterprise_desktop 12
CVE-2016-1715 MEDIUM

The swin.sys kernel driver in McAfee Application Control (MAC) 6.1.0 before build 706, 6.1.1 before build 404, 6.1.2 before build 449, 6.1.3 before build 441, and 6.2.0 before build 505 on 32-bit Windows platforms allows local users to cause a denial of service (memory corruption and system crash) or gain privileges via a 768 syscall, which triggers a zero to be written to an arbitrary kernel memory location.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-189,

Products Affected

Vendor Product Version
mcafee application_control 6.1.3
mcafee application_control 6.1.0
mcafee application_control 6.1.1
mcafee application_control 6.2.0
microsoft windows *
mcafee application_control 6.1.2
CVE-2016-1762 MEDIUM

The xmlNextChar function in libxml2 before 2.9.4 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,CWE-122,

Products Affected

Vendor Product Version
redhat enterprise_linux_server_tus 7.6
redhat enterprise_linux_workstation 6.0
redhat enterprise_linux_server_eus 7.4
canonical ubuntu_linux 16.04
redhat enterprise_linux_server_tus 7.2
apple mac_os_x *
redhat enterprise_linux_server_aus 7.2
redhat enterprise_linux_server_eus 7.2
redhat enterprise_linux_server_aus 7.6
redhat enterprise_linux_server 6.0
apple iphone_os *
redhat enterprise_linux_server_eus 7.6
redhat enterprise_linux_server_tus 7.3
apple tvos *
xmlsoft libxml2 *
canonical ubuntu_linux 14.04
apple safari *
redhat enterprise_linux_server_aus 7.4
redhat enterprise_linux_desktop 6.0
redhat enterprise_linux_server 7.0
mcafee web_gateway *
redhat enterprise_linux_desktop 7.0
debian debian_linux 8.0
canonical ubuntu_linux 12.04
canonical ubuntu_linux 15.10
redhat enterprise_linux_server_eus 7.3
apple watchos *
redhat enterprise_linux_server_eus 7.5
redhat enterprise_linux_workstation 7.0
redhat enterprise_linux_server_aus 7.3
CVE-2016-1833 MEDIUM

The htmlCurrentChar function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
redhat enterprise_linux_server_tus 7.6
redhat enterprise_linux_workstation 6.0
redhat enterprise_linux_server_eus 7.4
canonical ubuntu_linux 16.04
redhat enterprise_linux_server_tus 7.2
apple mac_os_x *
redhat enterprise_linux_server_aus 7.2
redhat enterprise_linux_server_eus 7.2
redhat enterprise_linux_server_aus 7.6
redhat enterprise_linux_server 6.0
apple iphone_os *
redhat enterprise_linux_server_eus 7.6
redhat enterprise_linux_server_tus 7.3
apple tvos *
xmlsoft libxml2 *
canonical ubuntu_linux 14.04
redhat enterprise_linux_server_aus 7.4
redhat enterprise_linux_desktop 6.0
redhat enterprise_linux_server 7.0
mcafee web_gateway *
redhat enterprise_linux_desktop 7.0
debian debian_linux 8.0
canonical ubuntu_linux 12.04
canonical ubuntu_linux 15.10
redhat enterprise_linux_server_eus 7.3
apple watchos *
redhat enterprise_linux_server_eus 7.5
redhat enterprise_linux_workstation 7.0
redhat enterprise_linux_server_aus 7.3
CVE-2016-1834 HIGH

Heap-based buffer overflow in the xmlStrncat function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted XML document.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,CWE-122,

Products Affected

Vendor Product Version
redhat enterprise_linux_server_tus 7.6
redhat enterprise_linux_workstation 6.0
redhat enterprise_linux_server_eus 7.4
canonical ubuntu_linux 16.04
redhat enterprise_linux_server_tus 7.2
apple mac_os_x *
redhat enterprise_linux_server_aus 7.2
redhat enterprise_linux_server_eus 7.2
redhat enterprise_linux_server_aus 7.6
redhat enterprise_linux_server 6.0
apple iphone_os *
redhat enterprise_linux_server_eus 7.6
redhat enterprise_linux_server_tus 7.3
apple tvos *
xmlsoft libxml2 *
canonical ubuntu_linux 14.04
redhat enterprise_linux_server_aus 7.4
redhat enterprise_linux_desktop 6.0
redhat enterprise_linux_server 7.0
mcafee web_gateway *
redhat enterprise_linux_desktop 7.0
debian debian_linux 8.0
canonical ubuntu_linux 12.04
canonical ubuntu_linux 15.10
redhat enterprise_linux_server_eus 7.3
apple watchos *
redhat enterprise_linux_server_eus 7.5
redhat enterprise_linux_workstation 7.0
redhat enterprise_linux_server_aus 7.3
CVE-2016-1836 MEDIUM

Use-after-free vulnerability in the xmlDictComputeFastKey function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service via a crafted XML document.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-416,

Products Affected

Vendor Product Version
redhat enterprise_linux_server_tus 7.6
redhat enterprise_linux_workstation 6.0
redhat enterprise_linux_server_eus 7.4
canonical ubuntu_linux 16.04
redhat enterprise_linux_server_tus 7.2
apple mac_os_x *
redhat enterprise_linux_server_aus 7.2
redhat enterprise_linux_server_eus 7.2
redhat enterprise_linux_server_aus 7.6
redhat enterprise_linux_server 6.0
apple iphone_os *
redhat enterprise_linux_server_eus 7.6
redhat enterprise_linux_server_tus 7.3
apple tvos *
xmlsoft libxml2 *
canonical ubuntu_linux 14.04
redhat enterprise_linux_server_aus 7.4
redhat enterprise_linux_desktop 6.0
redhat enterprise_linux_server 7.0
mcafee web_gateway *
redhat enterprise_linux_desktop 7.0
debian debian_linux 8.0
canonical ubuntu_linux 12.04
canonical ubuntu_linux 15.10
redhat enterprise_linux_server_eus 7.3
apple watchos *
redhat enterprise_linux_server_eus 7.5
redhat enterprise_linux_workstation 7.0
redhat enterprise_linux_server_aus 7.3
CVE-2016-1837 MEDIUM

Multiple use-after-free vulnerabilities in the (1) htmlPArsePubidLiteral and (2) htmlParseSystemiteral functions in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allow remote attackers to cause a denial of service via a crafted XML document.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-416,

Products Affected

Vendor Product Version
redhat enterprise_linux_server_tus 7.6
redhat enterprise_linux_workstation 6.0
redhat enterprise_linux_server_eus 7.4
canonical ubuntu_linux 16.04
redhat enterprise_linux_server_tus 7.2
apple mac_os_x *
redhat enterprise_linux_server_aus 7.2
redhat enterprise_linux_server_eus 7.2
redhat enterprise_linux_server_aus 7.6
redhat enterprise_linux_server 6.0
apple iphone_os *
redhat enterprise_linux_server_eus 7.6
redhat enterprise_linux_server_tus 7.3
apple tvos *
xmlsoft libxml2 *
canonical ubuntu_linux 14.04
redhat enterprise_linux_server_aus 7.4
redhat enterprise_linux_desktop 6.0
redhat enterprise_linux_server 7.0
mcafee web_gateway *
redhat enterprise_linux_desktop 7.0
debian debian_linux 8.0
canonical ubuntu_linux 12.04
canonical ubuntu_linux 15.10
redhat enterprise_linux_server_eus 7.3
apple watchos *
redhat enterprise_linux_server_eus 7.5
redhat enterprise_linux_workstation 7.0
redhat enterprise_linux_server_aus 7.3
CVE-2016-1838 MEDIUM

The xmlPArserPrintFileContextInternal function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
redhat enterprise_linux_server_tus 7.6
redhat enterprise_linux_workstation 6.0
redhat enterprise_linux_server_eus 7.4
canonical ubuntu_linux 16.04
redhat enterprise_linux_server_tus 7.2
apple mac_os_x *
redhat enterprise_linux_server_aus 7.2
redhat enterprise_linux_server_eus 7.2
redhat enterprise_linux_server_aus 7.6
redhat enterprise_linux_server 6.0
apple iphone_os *
redhat enterprise_linux_server_eus 7.6
redhat enterprise_linux_server_tus 7.3
apple tvos *
xmlsoft libxml2 *
canonical ubuntu_linux 14.04
redhat enterprise_linux_server_aus 7.4
redhat enterprise_linux_desktop 6.0
redhat enterprise_linux_server 7.0
mcafee web_gateway *
redhat enterprise_linux_desktop 7.0
debian debian_linux 8.0
canonical ubuntu_linux 12.04
canonical ubuntu_linux 15.10
redhat enterprise_linux_server_eus 7.3
apple watchos *
redhat enterprise_linux_server_eus 7.5
redhat enterprise_linux_workstation 7.0
redhat enterprise_linux_server_aus 7.3
CVE-2016-1839 MEDIUM

The xmlDictAddString function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
redhat enterprise_linux_server_tus 7.6
redhat enterprise_linux_workstation 6.0
redhat enterprise_linux_server_eus 7.4
canonical ubuntu_linux 16.04
redhat enterprise_linux_server_tus 7.2
apple mac_os_x *
redhat enterprise_linux_server_aus 7.2
redhat enterprise_linux_server_eus 7.2
redhat enterprise_linux_server_aus 7.6
redhat enterprise_linux_server 6.0
apple iphone_os *
redhat enterprise_linux_server_eus 7.6
redhat enterprise_linux_server_tus 7.3
apple tvos *
xmlsoft libxml2 *
canonical ubuntu_linux 14.04
redhat enterprise_linux_server_aus 7.4
redhat enterprise_linux_desktop 6.0
redhat enterprise_linux_server 7.0
mcafee web_gateway *
redhat enterprise_linux_desktop 7.0
debian debian_linux 8.0
canonical ubuntu_linux 12.04
canonical ubuntu_linux 15.10
redhat enterprise_linux_server_eus 7.3
apple watchos *
redhat enterprise_linux_server_eus 7.5
redhat enterprise_linux_workstation 7.0
redhat enterprise_linux_server_aus 7.3
CVE-2016-1840 MEDIUM

Heap-based buffer overflow in the xmlFAParsePosCharGroup function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted XML document.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
redhat enterprise_linux_server_tus 7.6
redhat enterprise_linux_workstation 6.0
redhat enterprise_linux_server_eus 7.4
canonical ubuntu_linux 16.04
redhat enterprise_linux_server_tus 7.2
apple mac_os_x *
redhat enterprise_linux_server_aus 7.2
redhat enterprise_linux_server_eus 7.2
redhat enterprise_linux_server_aus 7.6
redhat enterprise_linux_server 6.0
apple iphone_os *
redhat enterprise_linux_server_eus 7.6
redhat enterprise_linux_server_tus 7.3
apple tvos *
xmlsoft libxml2 *
canonical ubuntu_linux 14.04
redhat enterprise_linux_server_aus 7.4
redhat enterprise_linux_desktop 6.0
redhat enterprise_linux_server 7.0
mcafee web_gateway *
redhat enterprise_linux_desktop 7.0
debian debian_linux 8.0
canonical ubuntu_linux 12.04
canonical ubuntu_linux 15.10
redhat enterprise_linux_server_eus 7.3
apple watchos *
redhat enterprise_linux_server_eus 7.5
redhat enterprise_linux_workstation 7.0
redhat enterprise_linux_server_aus 7.3
CVE-2016-2199 MEDIUM

Multiple cross-site request forgery (CSRF) vulnerabilities in the Organizations and Remediation management page in Enterprise Manager in McAfee Vulnerability Manager (MVM) before 7.5.10 allow remote attackers to hijack the authentication of administrators for requests that have unspecified impact via unknown vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
mcafee vulnerability_manager *
CVE-2016-3969 MEDIUM

Cross-site scripting (XSS) vulnerability in McAfee Email Gateway (MEG) 7.6.x before 7.6.404, when File Filtering is enabled with the action set to ESERVICES:REPLACE, allows remote attackers to inject arbitrary web script or HTML via an attachment in a blocked email.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mcafee email_gateway 7.6.3
mcafee email_gateway 7.6
mcafee email_gateway 7.6.1
mcafee email_gateway 7.6.2
mcafee email_gateway 7.6.4
CVE-2016-3983 MEDIUM

McAfee Advanced Threat Defense (ATD) before 3.4.8.178 might allow remote attackers to bypass malware detection by leveraging information about the parent process.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-345,

Products Affected

Vendor Product Version
mcafee advanced_threat_defense *
CVE-2016-3984 LOW

The McAfee VirusScan Console (mcconsol.exe) in McAfee Active Response (MAR) before 1.1.0.161, Agent (MA) 5.x before 5.0.2 Hotfix 1110392 (5.0.2.333), Data Exchange Layer 2.x (DXL) before 2.0.1.140.1, Data Loss Prevention Endpoint (DLPe) 9.3 before Patch 6 and 9.4 before Patch 1 HF3, Device Control (MDC) 9.3 before Patch 6 and 9.4 before Patch 1 HF3, Endpoint Security (ENS) 10.x before 10.1, Host Intrusion Prevention Service (IPS) 8.0 before 8.0.0.3624, and VirusScan Enterprise (VSE) 8.8 before P7 (8.8.0.1528) on Windows allows local administrators to bypass intended self-protection rules and disable the antivirus engine by modifying registry keys.

CVSS 2.0

Severity: LOW

Problem Type: CWE-284,

Products Affected

Vendor Product Version
mcafee data_loss_prevention_endpoint *
mcafee active_response *
mcafee endpoint_security *
mcafee virusscan_enterprise *
mcafee data_exchange_layer *
mcafee host_intrusion_prevention *
mcafee agent *
CVE-2016-4447 MEDIUM

The xmlParseElementDecl function in parser.c in libxml2 before 2.9.4 allows context-dependent attackers to cause a denial of service (heap-based buffer underread and application crash) via a crafted file, involving xmlParseName.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
debian debian_linux 8.0
oracle vm_server 3.4
canonical ubuntu_linux 16.04
canonical ubuntu_linux 12.04
apple itunes 12.4.1
apple mac_os_x *
canonical ubuntu_linux 15.10
apple iphone_os *
apple watchos *
apple tvos *
xmlsoft libxml2 *
oracle vm_server 3.3
debian debian_linux 7.0
canonical ubuntu_linux 14.04
hp icewall_federation_agent 3.0
mcafee web_gateway *
CVE-2016-4448 HIGH

Format string vulnerability in libxml2 before 2.9.4 allows attackers to have unspecified impact via format string specifiers in unknown vectors.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-134,

Products Affected

Vendor Product Version
oracle linux 6
redhat enterprise_linux_server_tus 7.6
redhat enterprise_linux_workstation 6.0
redhat enterprise_linux_server_eus 7.4
oracle vm_server 3.4
tenable log_correlation_engine 4.8.0
redhat enterprise_linux_server_tus 7.2
apple mac_os_x *
redhat enterprise_linux_server_aus 7.2
redhat enterprise_linux_server_eus 7.2
redhat enterprise_linux_server_aus 7.6
redhat enterprise_linux_server 6.0
apple iphone_os *
redhat enterprise_linux_server_eus 7.6
redhat enterprise_linux_server_tus 7.3
redhat enterprise_linux_server_aus 7.7
apple tvos *
xmlsoft libxml2 *
hp icewall_federation_agent 3.0
redhat enterprise_linux_server_aus 7.4
redhat enterprise_linux_desktop 6.0
redhat enterprise_linux_server 7.0
mcafee web_gateway *
redhat enterprise_linux_desktop 7.0
oracle linux 7
redhat enterprise_linux_server_tus 7.7
slackware slackware_linux 14.0
redhat enterprise_linux_server_eus 7.3
apple icloud *
apple watchos *
redhat enterprise_linux_server_eus 7.5
oracle vm_server 3.3
apple itunes *
slackware slackware_linux 14.1
redhat enterprise_linux_server_eus 7.7
redhat enterprise_linux_workstation 7.0
redhat enterprise_linux_server_aus 7.3
CVE-2016-4472 MEDIUM

The overflow protection in Expat is removed by compilers with certain optimization settings, which allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via crafted XML data. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-1283 and CVE-2015-2716.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.1 HIGH CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H 2.2 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
mcafee policy_auditor *
libexpat_project libexpat *
canonical ubuntu_linux 12.04
python python *
CVE-2016-4534 LOW

The McAfee VirusScan Console (mcconsol.exe) in McAfee VirusScan Enterprise 8.8.0 before Hotfix 1123565 (8.8.0.1546) on Windows allows local administrators to bypass intended self-protection rules and unlock the console window by closing registry handles.

CVSS 2.0

Severity: LOW

Problem Type: CWE-264,

Products Affected

Vendor Product Version
microsoft windows *
mcafee virusscan_enterprise 8.8.0
CVE-2016-4535 HIGH

Integer signedness error in the AV engine before DAT 8145, as used in McAfee LiveSafe 14.0, allows remote attackers to cause a denial of service (memory corruption and crash) via a crafted packed executable.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
mcafee livesafe 14.0
CVE-2016-8005 MEDIUM

File extension filtering vulnerability in Intel Security McAfee Email Gateway (MEG) before 7.6.404h1128596 allows attackers to fail to identify the file name properly via scanning an email with a forged attached filename that uses a null byte within the filename extension.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
mcafee email_gateway *
CVE-2016-8006 LOW

Authentication bypass vulnerability in Enterprise Security Manager (ESM) and License Manager (LM) in Intel Security McAfee Security Information and Event Management (SIEM) 9.6.0 MR3 allows an administrator to make changes to other SIEM users' information including user passwords without supplying the current administrator password a second time via the GUI or GUI terminal commands.

CVSS 2.0

Severity: LOW

Problem Type: CWE-264,

Products Affected

Vendor Product Version
mcafee security_information_and_event_management *
CVE-2016-8007 LOW

Authentication bypass vulnerability in McAfee Host Intrusion Prevention Services (HIPS) 8.0 Patch 7 and earlier allows authenticated users to manipulate the product's registry keys via specific conditions.

CVSS 2.0

Severity: LOW

Problem Type: CWE-284,

Products Affected

Vendor Product Version
mcafee host_intrusion_prevention_services *
CVE-2016-8008 HIGH

Privilege escalation vulnerability in Windows 7 and Windows 10 in McAfee Security Scan Plus (SSP) 3.11.376 allows attackers to load a replacement of the version.dll file via McAfee McUICnt.exe onto a Windows system.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-264,

Products Affected

Vendor Product Version
mcafee security_scan_plus *
CVE-2016-8009 MEDIUM

Privilege escalation vulnerability in Intel Security McAfee Application Control (MAC) 7.0 and 6.x versions allows attackers to cause DoS, unexpected behavior, or potentially unauthorized code execution via an unauthorized use of IOCTL call.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
mcafee application_control 6.1.3
mcafee application_control 6.1.0
mcafee application_control 6.1.1
mcafee application_control 6.2.0
mcafee application_control 7.0.0
mcafee application_control 6.1.2
mcafee application_control 6.0.0
CVE-2016-8010 MEDIUM

Application protections bypass vulnerability in Intel Security McAfee Application Control (MAC) 7.0 and earlier and Endpoint Security (ENS) 10.2 and earlier allows local users to bypass local security protection via a command-line utility.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-284,

Products Affected

Vendor Product Version
mcafee endpoint_security *
mcafee application_control *
CVE-2016-8012 MEDIUM

Access control vulnerability in Intel Security Data Loss Prevention Endpoint (DLPe) 9.4.200 and 9.3.600 allows authenticated users with Read-Write-Execute permissions to inject hook DLLs into other processes via pages in the target process memory get.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
mcafee data_loss_prevention_endpoint *
CVE-2016-8016 LOW

Information exposure in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier) allows authenticated remote attackers to obtain the existence of unauthorized files on the system via a URL parameter.

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mcafee virusscan_enterprise *
CVE-2016-8017 MEDIUM

Special element injection vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier) allows authenticated remote attackers to read files on the webserver via a crafted user input.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
mcafee virusscan_enterprise *
CVE-2016-8018 MEDIUM

Cross-site request forgery (CSRF) vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier) allows authenticated remote attackers to execute unauthorized commands via a crafted user input.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
mcafee virusscan_enterprise *
CVE-2016-8019 MEDIUM

Cross-site scripting (XSS) vulnerability in attributes in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier) allows unauthenticated remote attackers to inject arbitrary web script or HTML via a crafted user input.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mcafee virusscan_enterprise *
CVE-2016-8020 MEDIUM

Improper control of generation of code vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier) allows remote authenticated users to execute arbitrary code via a crafted HTTP request parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-94,

Products Affected

Vendor Product Version
mcafee virusscan_enterprise *
CVE-2016-8021 LOW

Improper verification of cryptographic signature vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier) allows remote authenticated users to spoof update server and execute arbitrary code via a crafted input file.

CVSS 2.0

Severity: LOW

Problem Type: CWE-347,

Products Affected

Vendor Product Version
mcafee virusscan_enterprise *
CVE-2016-8022 MEDIUM

Authentication bypass by spoofing vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier) allows remote unauthenticated attacker to execute arbitrary code or cause a denial of service via a crafted authentication cookie.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
mcafee virusscan_enterprise *
CVE-2016-8023 MEDIUM

Authentication bypass by assumed-immutable data vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier) allows remote unauthenticated attacker to bypass server authentication via a crafted authentication cookie.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
mcafee virusscan_enterprise *
CVE-2016-8024 MEDIUM

Improper neutralization of CRLF sequences in HTTP headers vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier) allows remote unauthenticated attacker to obtain sensitive information via the server HTTP response spoofing.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-113,

Products Affected

Vendor Product Version
mcafee virusscan_enterprise *
CVE-2016-8025 MEDIUM

SQL injection vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier) allows remote authenticated users to obtain product information via a crafted HTTP request parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-89,

Products Affected

Vendor Product Version
mcafee virusscan_enterprise *
CVE-2016-8026 MEDIUM

Arbitrary command execution vulnerability in Intel Security McAfee Security Scan Plus (SSP) 3.11.469 and earlier allows authenticated users to gain elevated privileges via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
mcafee security_scan_plus *
CVE-2016-8027 HIGH

SQL injection vulnerability in core services in Intel Security McAfee ePolicy Orchestrator (ePO) 5.3.2 and earlier and 5.1.3 and earlier allows attackers to alter a SQL query, which can result in disclosure of information within the database or impersonation of an agent without authentication via a specially crafted HTTP post.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-89,

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator *
CVE-2016-8030 MEDIUM

A memory corruption vulnerability in Scriptscan COM Object in McAfee VirusScan Enterprise 8.8 Patch 8 and earlier allows remote attackers to create a Denial of Service on the active Internet Explorer tab via a crafted HTML link.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
mcafee virusscan_enterprise *
CVE-2016-8031 MEDIUM

Software Integrity Attacks vulnerability in Intel Security Anti-Virus Engine (AVE) 5200 through 5800 allows local users to bypass local security protection via a crafted input file.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.3 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H 1.3 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,

Products Affected

Vendor Product Version
mcafee anti-malware_scan_engine 5200
mcafee anti-malware_scan_engine 5300
mcafee anti-malware_scan_engine 5700
mcafee anti-malware_scan_engine 5600
mcafee anti-malware_scan_engine 5800
mcafee anti-malware_scan_engine 5500
mcafee anti-malware_scan_engine 5400
CVE-2016-8032 MEDIUM

Software Integrity Attacks vulnerability in Intel Security Anti-Virus Engine (AVE) 5200 through 5800 allows local attackers to bypass local security protection via a crafted input file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-284,

Products Affected

Vendor Product Version
mcafee anti-malware_scan_engine 5200
mcafee anti-malware_scan_engine 5300
mcafee anti-malware_scan_engine 5700
mcafee anti-malware_scan_engine 5600
mcafee anti-malware_scan_engine 5800
mcafee anti-malware_scan_engine 5500
mcafee anti-malware_scan_engine 5400
CVE-2017-1000366 HIGH

glibc contains a vulnerability that allows specially crafted LD_LIBRARY_PATH values to manipulate the heap/stack, causing them to alias, potentially resulting in arbitrary code execution. Please note that additional hardening changes have been made to glibc to prevent manipulation of stack and heap memory but these issues are not directly exploitable, as such they have not been given a CVE. This affects glibc 2.25 and earlier.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
redhat enterprise_linux_server_aus 6.5
redhat enterprise_linux_workstation 6.0
redhat enterprise_linux_server_eus 7.4
redhat enterprise_linux_server_eus 7.2
redhat enterprise_linux_server_tus 7.3
novell suse_linux_enterprise_point_of_sale 11.0
redhat enterprise_linux_server_aus 5.9
redhat enterprise_linux 6.0
redhat enterprise_linux 7.0
redhat enterprise_linux_desktop 6.0
mcafee web_gateway *
redhat enterprise_linux 5
suse linux_enterprise_for_sap 12
debian debian_linux 8.0
openstack cloud_magnum_orchestration 7
redhat enterprise_linux_server_eus 6.2
redhat enterprise_linux_server_eus 6.7
redhat enterprise_linux_server_tus 6.5
novell suse_linux_enterprise_desktop 12.0
redhat enterprise_linux_server_aus 6.4
redhat enterprise_linux_server_tus 7.6
gnu glibc *
redhat enterprise_linux_server 6.6
redhat enterprise_linux_server_aus 6.6
redhat enterprise_linux_server_tus 7.2
debian debian_linux 9.0
suse linux_enterprise_server 12
redhat enterprise_linux_server_aus 7.2
novell suse_linux_enterprise_server 11.0
redhat enterprise_linux_server_aus 7.6
redhat enterprise_linux_server 6.0
redhat enterprise_linux_server_eus 7.6
suse linux_enterprise_server 11
redhat enterprise_linux_server_eus 6.5
opensuse leap 42.2
redhat enterprise_linux_server_aus 7.4
suse linux_enterprise_software_development_kit 11.0
redhat enterprise_linux_server 7.0
redhat enterprise_linux_desktop 7.0
suse linux_enterprise_software_development_kit 12.0
redhat enterprise_linux_server_aus 6.2
suse linux_enterprise_server 10
redhat enterprise_linux_server_eus 7.3
suse linux_enterprise_server_for_raspberry_pi 12
redhat enterprise_linux_server_long_life 5.9
redhat enterprise_linux_server_eus 7.5
redhat enterprise_linux_server_tus 6.6
redhat enterprise_linux_workstation 7.0
redhat enterprise_linux_server_aus 7.3
CVE-2017-17740 MEDIUM

contrib/slapd-modules/nops/nops.c in OpenLDAP through 2.4.45, when both the nops module and the memberof overlay are enabled, attempts to free a buffer that was allocated on the stack, which allows remote attackers to cause a denial of service (slapd crash) via a member MODDN operation.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
mcafee policy_auditor *
opensuse leap 15.1
oracle blockchain_platform *
openldap openldap *
opensuse leap 15.0
CVE-2017-3896 MEDIUM

Unvalidated parameter vulnerability in the remote log viewing capability in Intel Security McAfee Agent 5.0.x versions prior to 5.0.4.449 allows remote attackers to pass unexpected input parameters via a URL that was not completely validated.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
mcafee mcafee_agent 5.0.3
mcafee mcafee_agent 5.0.1
mcafee mcafee_agent 5.0.0
mcafee mcafee_agent 5.0.2
mcafee mcafee_agent 5.0.4
CVE-2017-3897 HIGH

A Code Injection vulnerability in the non-certificate-based authentication mechanism in McAfee Live Safe versions prior to 16.0.3 and McAfee Security Scan Plus (MSS+) versions prior to 3.11.599.3 allows network attackers to perform a malicious file execution via a HTTP backend-response.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-94,

Products Affected

Vendor Product Version
mcafee livesafe *
mcafee security_scan_plus *
CVE-2017-3898 MEDIUM

A man-in-the-middle attack vulnerability in the non-certificate-based authentication mechanism in McAfee LiveSafe (MLS) versions prior to 16.0.3 allows network attackers to modify the Windows registry value associated with the McAfee update via the HTTP backend-response.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,

Products Affected

Vendor Product Version
mcafee livesafe *
CVE-2017-3899 MEDIUM

SQL injection vulnerability in Intel Security Advanced Threat Defense (ATD) Linux 3.6.0 and earlier allows remote authenticated users to obtain product information via a crafted HTTP request parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-89,

Products Affected

Vendor Product Version
mcafee advanced_threat_defense *
CVE-2017-3902 LOW

Cross-site scripting (XSS) vulnerability in the Web user interface (UI) in Intel Security ePO 5.1.3, 5.1.2, 5.1.1, and 5.1.0 allows authenticated users to inject malicious Java scripts via bypassing input validation.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator 5.1.2
mcafee epolicy_orchestrator 5.1.1
mcafee epolicy_orchestrator 5.1.0
mcafee epolicy_orchestrator 5.1.3
CVE-2017-3907 HIGH

Code Injection vulnerability in the ePolicy Orchestrator (ePO) extension in McAfee Threat Intelligence Exchange (TIE) Server 2.1.0 and earlier allows remote attackers to execute arbitrary HTML code to be reflected in the response web page via unspecified vector.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-94,

Products Affected

Vendor Product Version
mcafee mcafee_threat_intelligence_exchange 2.1.0
CVE-2017-3912 MEDIUM

Bypassing password security vulnerability in McAfee Application and Change Control (MACC) 7.0.1 and 6.2.0 allows authenticated users to perform arbitrary command execution via a command-line utility.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-274,CWE-287,

Products Affected

Vendor Product Version
mcafee application_and_change_control 7.0.1
mcafee application_and_change_control 6.2.0
CVE-2017-3933 LOW

Embedding Script (XSS) in HTTP Headers vulnerability in McAfee Network Data Loss Prevention (NDLP) 9.3.x allows remote authenticated users to view confidential information via a cross site request forgery attack.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mcafee network_data_loss_prevention 9.3.3
mcafee network_data_loss_prevention 9.3.4
mcafee network_data_loss_prevention 9.3.1
mcafee network_data_loss_prevention 9.3.2
mcafee network_data_loss_prevention 9.3.0
CVE-2017-3934 MEDIUM

Missing HTTP Strict Transport Security state information vulnerability in the server in McAfee Network Data Loss Prevention (NDLP) 9.3.x allows man-in-the-middle attackers to expose confidential data via read files on the webserver.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mcafee network_data_loss_prevention *
CVE-2017-3935 MEDIUM

Network Data Loss Prevention is vulnerable to MIME type sniffing which allows older versions of Internet Explorer to perform MIME-sniffing on the response body, potentially causing the response body to be interpreted and displayed as a content type other than the intended content type.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mcafee network_data_loss_prevention *
CVE-2017-3936 HIGH

OS Command Injection vulnerability in McAfee ePolicy Orchestrator (ePO) 5.9.0, 5.3.2, 5.3.1, 5.1.3, 5.1.2, 5.1.1, and 5.1.0 allows attackers to run arbitrary OS commands with limited privileges via not sanitizing the user input data before exporting it into a CSV format output.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-78,

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator 5.1.2
mcafee epolicy_orchestrator 5.9.0
mcafee epolicy_orchestrator 5.3.2
mcafee epolicy_orchestrator 5.3.1
mcafee epolicy_orchestrator 5.1.1
mcafee epolicy_orchestrator 5.1.0
mcafee epolicy_orchestrator 5.1.3
CVE-2017-3948 LOW

Cross Site Scripting (XSS) in IMG Tags in the ePO extension in McAfee Data Loss Prevention Endpoint (DLP Endpoint) 10.0.x allows authenticated users to inject arbitrary web script or HTML via injecting malicious JavaScript into a user's browsing session.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mcafee data_loss_prevention_endpoint 10.0.230
mcafee data_loss_prevention_endpoint 10.0.200
mcafee data_loss_prevention_endpoint 10.0
mcafee data_loss_prevention_endpoint 10.0.100
mcafee data_loss_prevention_endpoint 10.0.250
CVE-2017-3960 MEDIUM

Exploitation of Authorization vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows authenticated users to gain elevated privileges via a crafted HTTP request parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mcafee network_security_manager *
CVE-2017-3961 LOW

Cross-Site Scripting (XSS) vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows authenticated users to allow arbitrary HTML code to be reflected in the response web page via crafted user input of attributes.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mcafee network_security_manager *
CVE-2017-3962 MEDIUM

Password recovery exploitation vulnerability in the non-certificate-based authentication mechanism in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows attackers to crack user passwords via unsalted hashes.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-916,

Products Affected

Vendor Product Version
mcafee network_security_manager *
CVE-2017-3964 LOW

Reflective Cross-Site Scripting (XSS) vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows attackers to inject arbitrary web script or HTML via a URL parameter.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mcafee network_security_manager *
CVE-2017-3965 MEDIUM

Cross-Site Request Forgery (CSRF) (aka Session Riding) vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows remote attackers to perform unauthorized tasks such as retrieving internal system information or manipulating the database via specially crafted URLs.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
mcafee network_security_manager *
CVE-2017-3966 MEDIUM

Exploitation of session variables, resource IDs and other trusted credentials vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows remote attackers to exploit or harm a user's browser via reusing the exposed session token in the application URL.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-613,

Products Affected

Vendor Product Version
mcafee network_security_manager *
CVE-2017-3967 MEDIUM

Target influence via framing vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows remote attackers to inject arbitrary web script or HTML via application pages inability to break out of 3rd party HTML frames.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-94,

Products Affected

Vendor Product Version
mcafee network_security_manager *
CVE-2017-3968 MEDIUM

Session fixation vulnerability in the web interface in McAfee Network Security Manager (NSM) before 8.2.7.42.2 and McAfee Network Data Loss Prevention (NDLP) before 9.3.4.1.5 allows remote attackers to disclose sensitive information or manipulate the database via a crafted authentication cookie.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-384,

Products Affected

Vendor Product Version
mcafee network_security_manager *
mcafee network_data_loss_prevention *
CVE-2017-3969 MEDIUM

Abuse of communication channels vulnerability in the server in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows man-in-the-middle attackers to decrypt messages via an inadequate implementation of SSL.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-417,

Products Affected

Vendor Product Version
mcafee network_security_manager *
CVE-2017-3971 MEDIUM

Cryptanalysis vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows attackers to view confidential information via insecure use of RC4 encryption cyphers.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-326,

Products Affected

Vendor Product Version
mcafee network_security_manager *
CVE-2017-3972 HIGH

Infrastructure-based foot printing vulnerability in the web interface in McAfee Network Security Management (NSM) before 8.2.7.42.2 allows attackers to execute arbitrary code via the server banner leaking potentially sensitive or security relevant information.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mcafee network_security_manager *
CVE-2017-3980 MEDIUM

A directory traversal vulnerability in the ePO Extension in McAfee ePolicy Orchestrator (ePO) 5.9.0, 5.3.2, and 5.1.3 and earlier allows remote authenticated users to execute a command of their choice via an authenticated ePO session.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator *
CVE-2017-4011 MEDIUM

Embedding Script (XSS) in HTTP Headers vulnerability in the server in McAfee Network Data Loss Prevention (NDLP) 9.3.x allows remote attackers to get session/cookie information via modification of the HTTP request.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mcafee network_data_loss_prevention *
CVE-2017-4012 MEDIUM

Privilege Escalation vulnerability in the server in McAfee Network Data Loss Prevention (NDLP) 9.3.x allows remote authenticated users to view confidential information via modification of the HTTP request.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mcafee network_data_loss_prevention *
CVE-2017-4013 MEDIUM

Banner Disclosure in the server in McAfee Network Data Loss Prevention (NDLP) 9.3.x allows remote attackers to obtain product information via HTTP response header.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mcafee network_data_loss_prevention *
CVE-2017-4014 MEDIUM

Session Side jacking vulnerability in the server in McAfee Network Data Loss Prevention (NDLP) 9.3.x allows remote authenticated users to view, add, and remove users via modification of the HTTP request.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-384,

Products Affected

Vendor Product Version
mcafee network_data_loss_prevention *
CVE-2017-4015 LOW

Clickjacking vulnerability in the server in McAfee Network Data Loss Prevention (NDLP) 9.3.x allows remote authenticated users to inject arbitrary web script or HTML via HTTP response header.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:H/A:N 0.9 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-1021,

Products Affected

Vendor Product Version
mcafee network_data_loss_prevention *
CVE-2017-4016 MEDIUM

Web Server method disclosure in the server in McAfee Network Data Loss Prevention (NDLP) 9.3.x allows remote attackers to exploit and find another hole via HTTP response header.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mcafee network_data_loss_prevention *
CVE-2017-4017 MEDIUM

User Name Disclosure in the server in McAfee Network Data Loss Prevention (NDLP) 9.3.x allows remote attackers to view user information via the appliance web interface.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mcafee network_data_loss_prevention *
CVE-2017-4028 LOW

Maliciously misconfigured registry vulnerability in all Microsoft Windows products in McAfee consumer and corporate products allows an administrator to inject arbitrary code into a debugged McAfee process via manipulation of registry parameters.

CVSS 2.0

Severity: LOW

Problem Type: CWE-74,

Products Affected

Vendor Product Version
mcafee internet_security -
mcafee host_intrusion_prevention 8.0
mcafee virus_scan_enterprise *
mcafee host_intrusion_prevention *
mcafee total_protection -
mcafee endpoint_security 10.2
mcafee anti-virus_plus -
mcafee virus_scan_enterprise 8.8
CVE-2017-4052 HIGH

Authentication Bypass vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote unauthenticated users / remote attackers to change or update any configuration settings, or gain administrator functionality via a crafted HTTP request parameter.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-306,

Products Affected

Vendor Product Version
mcafee advanced_threat_defense 3.6
mcafee advanced_threat_defense 3.4
mcafee advanced_threat_defense 3.8
mcafee advanced_threat_defense 3.10
CVE-2017-4053 HIGH

Command Injection vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote unauthenticated users / remote attackers to execute a command of their choice via a crafted HTTP request parameter.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-78,

Products Affected

Vendor Product Version
mcafee advanced_threat_defense 3.6
mcafee advanced_threat_defense 3.4
mcafee advanced_threat_defense 3.8
mcafee advanced_threat_defense 3.10
CVE-2017-4054 MEDIUM

Command Injection vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote authenticated users to execute a command of their choice via a crafted HTTP request parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-77,

Products Affected

Vendor Product Version
mcafee advanced_threat_defense 3.6
mcafee advanced_threat_defense 3.4
mcafee advanced_threat_defense 3.8
mcafee advanced_threat_defense 3.10
CVE-2017-4055 MEDIUM

Exploitation of Authentication vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote unauthenticated users / remote attackers to bypass ATD detection via loose enforcement of authentication and authorization.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-306,

Products Affected

Vendor Product Version
mcafee advanced_threat_defense 3.6
mcafee advanced_threat_defense 3.4
mcafee advanced_threat_defense 3.8
mcafee advanced_threat_defense 3.10
CVE-2017-4057 MEDIUM

Privilege Escalation vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote authenticated users to gain elevated privileges via the GUI or GUI terminal commands.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mcafee advanced_threat_defense 3.6
mcafee advanced_threat_defense 3.4
mcafee advanced_threat_defense 3.8
mcafee advanced_threat_defense 3.10
CVE-2017-9287 MEDIUM

servers/slapd/back-mdb/search.c in OpenLDAP through 2.4.44 is prone to a double free vulnerability. A user with access to search the directory can crash slapd by issuing a search including the Paged Results control with a page size of 0.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-415,

Products Affected

Vendor Product Version
redhat enterprise_linux_eus 7.4
redhat enterprise_linux_desktop 7.0
redhat enterprise_linux_server_tus 7.6
mcafee policy_auditor *
debian debian_linux 8.0
oracle blockchain_platform *
redhat enterprise_linux_eus 7.6
redhat enterprise_linux_server_tus 7.7
redhat enterprise_linux_eus 7.5
redhat enterprise_linux_server_aus 7.6
redhat enterprise_linux_eus 7.7
redhat enterprise_linux_server_aus 7.7
openldap openldap *
redhat enterprise_linux_server_aus 7.4
redhat enterprise_linux_server 7.0
redhat enterprise_linux_workstation 7.0
CVE-2018-10381 HIGH

TunnelBear 3.2.0.6 for Windows suffers from a SYSTEM privilege escalation vulnerability through the "TunnelBearMaintenance" service. This service establishes a NetNamedPipe endpoint that allows arbitrary installed applications to connect and call publicly exposed methods. The "OpenVPNConnect" method accepts a server list argument that provides attacker control of the OpenVPN command line. An attacker can specify a dynamic library plugin that should run for every new VPN connection attempt. This plugin will execute code in the context of the SYSTEM user.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-732,

Products Affected

Vendor Product Version
mcafee tunnelbear 3.2.0.6
CVE-2018-18311 HIGH

Perl before 5.26.3 and 5.28.x before 5.28.1 has a buffer overflow via a crafted regular expression that triggers invalid write operations.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-190,CWE-787,

Products Affected

Vendor Product Version
redhat enterprise_linux_server_tus 7.6
canonical ubuntu_linux 18.10
canonical ubuntu_linux 16.04
redhat openshift_container_platform 3.11
apple mac_os_x *
debian debian_linux 9.0
netapp snap_creator_framework -
redhat enterprise_linux_server_aus 7.6
netapp snapcenter -
canonical ubuntu_linux 18.04
perl perl *
redhat enterprise_linux 6.0
canonical ubuntu_linux 14.04
redhat enterprise_linux 7.0
redhat enterprise_linux 7.4
redhat enterprise_linux 7.5
fedoraproject fedora 29
redhat enterprise_linux_server 7.0
mcafee web_gateway *
redhat enterprise_linux_desktop 7.0
debian debian_linux 8.0
redhat enterprise_linux_eus 7.6
canonical ubuntu_linux 12.04
redhat enterprise_linux 7.6
netapp e-series_santricity_os_controller -
netapp snapdriver -
redhat enterprise_linux_workstation 7.0
CVE-2018-6659 LOW

Reflected Cross-Site Scripting vulnerability in McAfee ePolicy Orchestrator (ePO) 5.3.2, 5.3.1, 5.3.0 and 5.9.0 allows remote authenticated users to exploit an XSS issue via not sanitizing the user input.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator 5.3.0
mcafee epolicy_orchestrator 5.9.0
mcafee epolicy_orchestrator 5.3.2
mcafee epolicy_orchestrator 5.3.1
CVE-2018-6660 MEDIUM

Directory Traversal vulnerability in McAfee ePolicy Orchestrator (ePO) 5.3.2, 5.3.1, 5.3.0 and 5.9.0 allows administrators to use Windows alternate data streams, which could be used to bypass the file extensions, via not properly validating the path when exporting a particular XML file.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator 5.3.0
mcafee epolicy_orchestrator 5.9.0
mcafee epolicy_orchestrator 5.3.2
mcafee epolicy_orchestrator 5.3.1
CVE-2018-6661 MEDIUM

DLL Side-Loading vulnerability in Microsoft Windows Client in McAfee True Key before 4.20.110 allows local users to gain privilege elevation via not verifying a particular DLL file signature.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-426,

Products Affected

Vendor Product Version
mcafee true_key *
CVE-2018-6662 HIGH

Privilege Escalation vulnerability in McAfee Management of Native Encryption (MNE) before 4.1.4 allows local users to gain elevated privileges via a crafted user input.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-78,

Products Affected

Vendor Product Version
mcafee management_of_native_encryption *
CVE-2018-6664 MEDIUM

Application Protections Bypass vulnerability in Microsoft Windows in McAfee Data Loss Prevention (DLP) Endpoint before 10.0.500 and DLP Endpoint before 11.0.400 allows authenticated users to bypass the product block action via a command-line utility.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-347,

Products Affected

Vendor Product Version
mcafee data_loss_prevention_endpoint *
CVE-2018-6667 HIGH

Authentication Bypass vulnerability in the administrative user interface in McAfee Web Gateway 7.8.1.0 through 7.8.1.5 allows remote attackers to execute arbitrary code via Java management extensions (JMX).

CVSS 2.0

Severity: HIGH

Problem Type: CWE-287,

Products Affected

Vendor Product Version
mcafee mcafee_web_gateway *
CVE-2018-6668 MEDIUM

A whitelist bypass vulnerability in McAfee Application Control / Change Control 7.0.1 and before allows execution bypass, for example, with simple DLL through interpreters such as PowerShell.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mcafee application_change_control *
CVE-2018-6669 MEDIUM

A whitelist bypass vulnerability in McAfee Application Control / Change Control 7.0.1 and before allows a remote or local user to execute blacklisted files through an ASP.NET form.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-425,

Products Affected

Vendor Product Version
mcafee application_change_control *
CVE-2018-6670 MEDIUM

External Entity Attack vulnerability in the ePO extension in McAfee Common UI (CUI) 2.0.2 allows remote authenticated users to view confidential information via a crafted HTTP request parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-611,

Products Affected

Vendor Product Version
mcafee common_catalog *
CVE-2018-6671 MEDIUM

Application Protection Bypass vulnerability in McAfee ePolicy Orchestrator (ePO) 5.3.0 through 5.3.3 and 5.9.0 through 5.9.1 allows remote authenticated users to bypass localhost only access security protection for some ePO features via a specially crafted HTTP request.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator *
CVE-2018-6672 MEDIUM

Information disclosure vulnerability in McAfee ePolicy Orchestrator (ePO) 5.3.0 through 5.3.3 and 5.9.0 through 5.9.1 allows authenticated users to view sensitive information in plain text format via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator *
CVE-2018-6674 LOW

Privilege Escalation vulnerability in Microsoft Windows client (McTray.exe) in McAfee VirusScan Enterprise (VSE) 8.8 prior to Patch 13 allows local users to spawn unrelated processes with elevated privileges via the system administrator granting McTray.exe elevated privileges (by default it runs with the current user's privileges).

CVSS 2.0

Severity: LOW

Problem Type: CWE-264,CWE-269,CWE-274,CWE-311,

Products Affected

Vendor Product Version
mcafee virusscan_enterprise 8.8.0
CVE-2018-6677 HIGH

Directory Traversal vulnerability in the administrative user interface in McAfee Web Gateway (MWG) MWG 7.8.1.x allows authenticated administrator users to gain elevated privileges via unspecified vectors.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-22,

Products Affected

Vendor Product Version
mcafee mcafee_web_gateway 7.8.1.0
CVE-2018-6678 MEDIUM

Configuration/Environment manipulation vulnerability in the administrative interface in McAfee Web Gateway (MWG) MWG 7.8.1.x allows authenticated administrator users to execute arbitrary commands via unspecified vectors.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.1 CRITICAL CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H 2.3 6.0

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mcafee mcafee_web_gateway 7.8.1.0
CVE-2018-6681 LOW

Abuse of Functionality vulnerability in the web interface in McAfee Network Security Management (NSM) 9.1.7.11 and earlier allows authenticated users to allow arbitrary HTML code to be reflected in the response web page via appliance web interface.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N 2.3 2.7

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mcafee network_security_manager *
CVE-2018-6682 MEDIUM

Cross Site Scripting Exposure in McAfee True Key (TK) 4.0.0.0 and earlier allows local users to expose confidential data via a crafted web site.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mcafee true_key *
CVE-2018-6683 MEDIUM

Exploiting Incorrectly Configured Access Control Security Levels vulnerability in McAfee Data Loss Prevention (DLP) for Windows versions prior to 10.0.505 and 11.0.405 allows local users to bypass DLP policy via editing of local policy files when offline.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.4 HIGH CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H 0.7 6.0

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-276,

Products Affected

Vendor Product Version
mcafee data_loss_prevention_endpoint *
CVE-2018-6686 MEDIUM

Authentication Bypass vulnerability in TPM autoboot in McAfee Drive Encryption (MDE) 7.1.0 and above allows physically proximate attackers to bypass local security protection via specific set of circumstances.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
mcafee drive_encryption *
CVE-2018-6687 MEDIUM

Loop with Unreachable Exit Condition ('Infinite Loop') in McAfee GetSusp (GetSusp) 3.0.0.461 and earlier allows attackers to DoS a manual GetSusp scan via while scanning a specifically crafted file . GetSusp is a free standalone McAfee tool that runs on several versions of Microsoft Windows.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-835,

Products Affected

Vendor Product Version
mcafee getsusp *
CVE-2018-6689 MEDIUM

Authentication Bypass vulnerability in McAfee Data Loss Prevention Endpoint (DLPe) 10.0.x earlier than 10.0.510, and 11.0.x earlier than 11.0.600 allows attackers to bypass local security protection via specific conditions.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
mcafee data_loss_prevention_endpoint *
CVE-2018-6690 LOW

Accessing, modifying, or executing executable files vulnerability in Microsoft Windows client in McAfee Application and Change Control (MACC) 8.0.0 Hotfix 4 and earlier allows authenticated users to execute arbitrary code via file transfer from external system.

CVSS 2.0

Severity: LOW

Problem Type: CWE-346,

Products Affected

Vendor Product Version
mcafee application_change_control *
mcafee application_change_control 8.0.0
CVE-2018-6693 LOW

An unprivileged user can delete arbitrary files on a Linux system running ENSLTP 10.5.1, 10.5.0, and 10.2.3 Hotfix 1246778 and earlier. By exploiting a time of check to time of use (TOCTOU) race condition during a specific scanning sequence, the unprivileged user is able to perform a privilege escalation to delete arbitrary files.

CVSS 2.0

Severity: LOW

Problem Type: CWE-274,CWE-363,CWE-367,

Products Affected

Vendor Product Version
mcafee endpoint_security_linux_threat_prevention 10.5.0
mcafee endpoint_security_for_linux_threat_prevention *
mcafee endpoint_security_for_linux_threat_prevention 10.5.1
CVE-2018-6695 MEDIUM

SSH host keys generation vulnerability in the server in McAfee Threat Intelligence Exchange Server (TIE Server) 1.3.0, 2.0.x, 2.1.x, 2.2.0 allows man-in-the-middle attackers to spoof servers via acquiring keys from another environment.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.9 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N 2.2 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mcafee threat_intelligence_exchange_server 1.3.0
mcafee threat_intelligence_exchange_server *
mcafee threat_intelligence_exchange_server 2.2.0
CVE-2018-6700 MEDIUM

DLL Search Order Hijacking vulnerability in Microsoft Windows Client in McAfee True Key (TK) before 5.1.165 allows local users to execute arbitrary code via specially crafted malware.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-426,

Products Affected

Vendor Product Version
mcafee true_key *
CVE-2018-6703 HIGH

Use After Free in Remote logging (which is disabled by default) in McAfee McAfee Agent (MA) 5.x prior to 5.6.0 allows remote unauthenticated attackers to cause a Denial of Service and potentially a remote code execution via a specially crafted HTTP header sent to the logging service.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-416,

Products Affected

Vendor Product Version
mcafee agent *
CVE-2018-6704 MEDIUM

Privilege escalation vulnerability in McAfee Agent (MA) for Linux 5.0.0 through 5.0.6, 5.5.0, and 5.5.1 allows local users to perform arbitrary command execution via specific conditions.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-377,NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mcafee agent 5.5.1
mcafee agent *
mcafee agent 5.5.0
CVE-2018-6705 MEDIUM

Privilege escalation vulnerability in McAfee Agent (MA) for Linux 5.0.0 through 5.0.6, 5.5.0, and 5.5.1 allows local users to perform arbitrary command execution via specific conditions.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-377,NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mcafee agent 5.5.1
mcafee agent *
mcafee agent 5.5.0
CVE-2018-6706 MEDIUM

Insecure handling of temporary files in non-Windows McAfee Agent 5.0.0 through 5.0.6, 5.5.0, and 5.5.1 allows an Unprivileged User to introduce custom paths during agent installation in Linux via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-377,NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mcafee agent 5.5.1
mcafee agent *
mcafee agent 5.5.0
CVE-2018-6707 MEDIUM

Denial of Service through Resource Depletion vulnerability in the agent in non-Windows McAfee Agent (MA) 5.0.0 through 5.0.6, 5.5.0, and 5.5.1 allows local users to cause DoS, unexpected behavior, or potentially unauthorized code execution via knowledge of the internal trust mechanism.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-400,

Products Affected

Vendor Product Version
mcafee agent 5.5.1
mcafee agent *
mcafee agent 5.5.0
CVE-2018-6755 MEDIUM

Weak Directory Permission Vulnerability in Microsoft Windows client in McAfee True Key (TK) 5.1.230.7 and earlier allows local users to execute arbitrary code via specially crafted malware.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-732,

Products Affected

Vendor Product Version
mcafee true_key *
CVE-2018-6756 MEDIUM

Authentication Abuse vulnerability in Microsoft Windows client in McAfee True Key (TK) 5.1.230.7 and earlier allows local users to execute unauthorized commands via specially crafted malware.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mcafee true_key *
CVE-2018-6757 MEDIUM

Privilege Escalation vulnerability in Microsoft Windows client in McAfee True Key (TK) 5.1.230.7 and earlier allows local users to execute arbitrary code via specially crafted malware.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mcafee true_key *
CVE-2019-13057 LOW

An issue was discovered in the server in OpenLDAP before 2.4.48. When the server administrator delegates rootDN (database admin) privileges for certain databases but wants to maintain isolation (e.g., for multi-tenant deployments), slapd does not properly stop a rootDN from requesting authorization as an identity from another database during a SASL bind or with a proxyAuthz (RFC 4370) control. (It is not a common configuration to deploy a system where the server administrator and a DB administrator enjoy different levels of trust.)

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.9 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N 1.2 3.6

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mcafee policy_auditor *
canonical ubuntu_linux 19.04
oracle solaris 11
opensuse leap 15.1
oracle zfs_storage_appliance_kit 8.8
debian debian_linux 8.0
oracle blockchain_platform *
canonical ubuntu_linux 16.04
canonical ubuntu_linux 12.04
apple mac_os_x *
opensuse leap 15.0
apple mac_os_x 10.13.6
mcafee policy_auditor 6.5.1
apple mac_os_x 10.14.6
canonical ubuntu_linux 18.04
openldap openldap *
canonical ubuntu_linux 14.04
CVE-2019-1559 MEDIUM

If an application encounters a fatal protocol error and then calls SSL_shutdown() twice (once to send a close_notify, and once to receive one) then OpenSSL can respond differently to the calling application if a 0 byte record is received with invalid padding compared to if a 0 byte record is received with an invalid MAC. If the application then behaves differently based on that in a way that is detectable to the remote peer, then this amounts to a padding oracle that could be used to decrypt data. In order for this to be exploitable "non-stitched" ciphersuites must be in use. Stitched ciphersuites are optimised implementations of certain commonly used ciphersuites. Also the application must call SSL_shutdown() twice even if a protocol error has occurred (applications should not do this but some do anyway). Fixed in OpenSSL 1.0.2r (Affected 1.0.2-1.0.2q).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.9 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N 2.2 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-203,

Products Affected

Vendor Product Version
oracle communications_session_border_controller 8.0.0
f5 traffix_signaling_delivery_controller 4.4.0
netapp oncommand_workflow_automation -
fedoraproject fedora 30
f5 big-ip_edge_gateway *
mcafee agent *
netapp a320_firmware -
oracle enterprise_manager_base_platform 13.3.0.0.0
netapp santricity_smi-s_provider -
oracle communications_session_border_controller 8.3
paloaltonetworks pan-os *
oracle mysql_workbench *
fedoraproject fedora 29
opensuse leap 42.3
oracle communications_diameter_signaling_router 8.2
netapp clustered_data_ontap_antivirus_connector -
netapp element_software -
f5 big-ip_application_acceleration_manager *
oracle communications_unified_session_manager 8.2.5
netapp snapprotect -
f5 big-ip_link_controller *
oracle jd_edwards_world_security a9.3.1
oracle enterprise_manager_ops_center 12.3.3
nodejs node.js *
netapp oncommand_unified_manager -
canonical ubuntu_linux 18.10
netapp cloud_backup -
canonical ubuntu_linux 16.04
oracle communications_session_router 8.3
debian debian_linux 9.0
netapp storagegrid -
netapp hci_management_node -
netapp active_iq_unified_manager -
redhat enterprise_linux_server 6.0
oracle secure_global_desktop 5.4
oracle communications_diameter_signaling_router 8.4
oracle communications_session_router 8.2
oracle communications_unified_session_manager 7.3.5
fedoraproject fedora 31
redhat virtualization 4.0
redhat enterprise_linux_server 7.0
redhat jboss_enterprise_web_server 5.0.0
netapp steelstore_cloud_integrated_storage -
oracle business_intelligence 12.2.1.4.0
netapp active_iq_unified_manager *
oracle jd_edwards_enterpriseone_tools 9.2
f5 big-ip_analytics *
oracle business_intelligence 11.1.1.9.0
oracle communications_session_router 7.4
netapp cn1610_firmware -
f5 traffix_signaling_delivery_controller *
netapp ontap_select_deploy -
f5 big-ip_policy_enforcement_manager *
netapp fas2750_firmware -
netapp a800_firmware -
oracle communications_diameter_signaling_router 8.1
oracle communications_session_border_controller 8.2
oracle mysql *
oracle jd_edwards_world_security a9.4
redhat enterprise_linux_workstation 7.0
redhat enterprise_linux_workstation 6.0
opensuse leap 15.1
mcafee data_exchange_layer *
netapp altavault -
netapp hci_compute_node -
oracle communications_diameter_signaling_router 8.3
netapp snapcenter -
oracle peoplesoft_enterprise_peopletools 8.55
netapp storage_automation_store -
netapp smi-s_provider -
netapp hyper_converged_infrastructure -
redhat enterprise_linux_desktop 6.0
mcafee web_gateway *
oracle enterprise_manager_base_platform 12.1.0.5.0
oracle mysql_enterprise_monitor *
debian debian_linux 8.0
oracle communications_session_router 8.0
tenable nessus *
f5 big-ip_advanced_firewall_manager *
oracle communications_session_router 8.1
netapp solidfire -
oracle communications_diameter_signaling_router 8.0.0
oracle peoplesoft_enterprise_peopletools 8.56
openssl openssl *
netapp a220_firmware -
oracle endeca_server 7.7.0
netapp c190_firmware -
oracle peoplesoft_enterprise_peopletools 8.57
f5 big-ip_access_policy_manager *
netapp service_processor -
f5 big-ip_fraud_protection_service *
netapp oncommand_unified_manager_core_package -
netapp storagegrid *
opensuse leap 15.0
oracle business_intelligence 12.2.1.3.0
f5 big-iq_centralized_management *
oracle services_tools_bundle 19.2
f5 big-ip_global_traffic_manager *
canonical ubuntu_linux 18.04
oracle enterprise_manager_ops_center 12.4.0
f5 big-ip_domain_name_system *
oracle enterprise_manager_base_platform 13.2.0.0.0
redhat enterprise_linux_desktop 7.0
netapp fas2720_firmware -
f5 big-ip_application_security_manager *
netapp ontap_select_deploy_administration_utility -
oracle communications_session_border_controller 7.4
redhat virtualization_host 4.0
netapp oncommand_insight -
oracle jd_edwards_world_security a9.3
oracle communications_session_border_controller 8.1.0
f5 big-ip_local_traffic_manager *
oracle communications_performance_intelligence_center 10.4.0.2
f5 big-ip_webaccelerator *
oracle api_gateway 11.1.2.4.0
netapp snapdrive -
mcafee threat_intelligence_exchange_server *
CVE-2019-16168 MEDIUM

In SQLite through 3.29.0, whereLoopAddBtreeIndex in sqlite3.c can crash a browser or other application because of missing validation of a sqlite_stat1 sz field, aka a "severe division by zero in the query planner."

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-369,

Products Affected

Vendor Product Version
oracle communications_design_studio 7.3.5.5.0
canonical ubuntu_linux 19.04
canonical ubuntu_linux 19.10
oracle zfs_storage_appliance 8.8
netapp oncommand_workflow_automation -
canonical ubuntu_linux 16.04
fedoraproject fedora 30
oracle outside_in_technology 8.5.4
oracle jre 1.8.0
debian debian_linux 9.0
netapp santricity_unified_manager -
oracle communications_design_studio 7.3.4.3.0
canonical ubuntu_linux 18.04
netapp steelstore_cloud_integrated_storage -
mcafee policy_auditor *
oracle solaris 11
netapp ontap_select_deploy_administration_utility -
canonical ubuntu_linux 12.04
netapp active_iq_unified_manager *
tenable nessus_agent *
oracle jdk 1.8.0
netapp oncommand_insight -
sqlite sqlite *
oracle mysql *
oracle communications_design_studio 7.4.0.4.0
netapp e-series_santricity_os_controller *
CVE-2019-2602 MEDIUM

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Libraries). Supported versions that are affected are Java SE: 7u211, 8u202, 11.0.2 and 12; Java SE Embedded: 8u201. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Java SE, Java SE Embedded. Note: This vulnerability can only be exploited by supplying data to APIs in the specified Component without using Untrusted Java Web Start applications or Untrusted Java applets, such as through a web service. CVSS 3.0 Base Score 7.5 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-400,

Products Affected

Vendor Product Version
redhat enterprise_linux_workstation 6.0
canonical ubuntu_linux 18.10
canonical ubuntu_linux 19.10
oracle jre 1.7.0
canonical ubuntu_linux 16.04
redhat openshift_container_platform 3.11
redhat enterprise_linux_server_tus 8.6
redhat enterprise_linux 8.0
oracle jre 1.8.0
debian debian_linux 9.0
opensuse leap 15.0
oracle jdk 1.7.0
redhat enterprise_linux_server_aus 8.2
redhat enterprise_linux_server 6.0
redhat enterprise_linux_eus 8.1
canonical ubuntu_linux 18.04
redhat enterprise_linux_eus 8.2
oracle jre 11.0.2
redhat enterprise_linux_server_aus 8.4
oracle jdk 11.0.2
redhat enterprise_linux_desktop 6.0
redhat enterprise_linux_server 7.0
opensuse leap 42.3
redhat enterprise_linux_desktop 7.0
debian debian_linux 8.0
redhat enterprise_linux_eus 8.4
redhat enterprise_linux_eus 8.6
oracle jdk 12
hp xp7_command_view *
oracle jdk 1.8.0
redhat enterprise_linux_server_tus 8.2
redhat enterprise_linux_server_aus 8.6
mcafee epolicy_orchestrator 5.9.0
redhat satellite 5.8
redhat enterprise_linux_server_tus 8.4
mcafee epolicy_orchestrator 5.9.1
oracle jre 12
redhat enterprise_linux_workstation 7.0
mcafee epolicy_orchestrator 5.10.0
CVE-2019-2745 LOW

Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Security). Supported versions that are affected are Java SE: 7u221, 8u212 and 11.0.3. Difficult to exploit vulnerability allows unauthenticated attacker with logon to the infrastructure where Java SE executes to compromise Java SE. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Java SE accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets (in Java SE 8), that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.0 Base Score 5.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.1 MEDIUM CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N 1.4 3.6

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
oracle jre 11.0.3
opensuse leap 15.1
oracle jdk 11.0.3
debian debian_linux 8.0
oracle jre 1.7.0
canonical ubuntu_linux 16.04
oracle jre 1.8.0
opensuse leap 15.0
hp xp7_command_view *
oracle jdk 1.7.0
oracle jdk 1.8.0
mcafee epolicy_orchestrator 5.9.0
mcafee epolicy_orchestrator 5.9.1
mcafee epolicy_orchestrator 5.10.0
CVE-2019-2762 MEDIUM

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Utilities). Supported versions that are affected are Java SE: 7u221, 8u212, 11.0.3 and 12.0.1; Java SE Embedded: 8u211. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets (in Java SE 8), that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.0 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
oracle jre 11.0.3
redhat enterprise_linux_workstation 6.0
canonical ubuntu_linux 19.04
opensuse leap 15.1
oracle jre 1.7.0
canonical ubuntu_linux 16.04
redhat enterprise_linux 8.0
oracle jre 1.8.0
oracle jre 12.0.1
opensuse leap 15.0
oracle jdk 1.7.0
redhat enterprise_linux_server 6.0
canonical ubuntu_linux 18.04
oracle jdk 12.0.1
redhat enterprise_linux_desktop 6.0
redhat enterprise_linux_server 7.0
redhat enterprise_linux_desktop 7.0
oracle jdk 11.0.3
debian debian_linux 8.0
redhat enterprise_linux_eus 8.6
hp xp7_command_view *
oracle jdk 1.8.0
mcafee epolicy_orchestrator 5.9.0
redhat satellite 5.8
mcafee epolicy_orchestrator 5.9.1
redhat enterprise_linux_workstation 7.0
mcafee epolicy_orchestrator 5.10.0
CVE-2019-2766 LOW

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Networking). Supported versions that are affected are Java SE: 7u221, 8u212, 11.0.3 and 12.0.1; Java SE Embedded: 8u211. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets (in Java SE 8), that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.0 Base Score 3.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.1 LOW CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N 1.6 1.4

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
oracle jre 11.0.3
opensuse leap 15.1
oracle jdk 11.0.3
oracle jre 1.7.0
oracle jre 1.8.0
oracle jre 12.0.1
opensuse leap 15.0
hp xp7_command_view *
oracle jdk 1.7.0
oracle jdk 1.8.0
mcafee epolicy_orchestrator 5.9.0
oracle jdk 12.0.1
mcafee epolicy_orchestrator 5.9.1
mcafee epolicy_orchestrator 5.10.0
CVE-2019-2769 MEDIUM

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Utilities). Supported versions that are affected are Java SE: 7u221, 8u212, 11.0.3 and 12.0.1; Java SE Embedded: 8u211. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets (in Java SE 8), that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.0 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
oracle jre 11.0.3
redhat enterprise_linux_workstation 6.0
canonical ubuntu_linux 19.04
opensuse leap 15.1
oracle jre 1.7.0
canonical ubuntu_linux 16.04
redhat enterprise_linux 8.0
oracle jre 1.8.0
oracle jre 12.0.1
opensuse leap 15.0
oracle jdk 1.7.0
redhat enterprise_linux_server 6.0
canonical ubuntu_linux 18.04
oracle jdk 12.0.1
redhat enterprise_linux_desktop 6.0
redhat enterprise_linux_server 7.0
redhat enterprise_linux_desktop 7.0
oracle jdk 11.0.3
debian debian_linux 8.0
redhat enterprise_linux_eus 8.6
hp xp7_command_view *
oracle jdk 1.8.0
mcafee epolicy_orchestrator 5.9.0
redhat satellite 5.8
mcafee epolicy_orchestrator 5.9.1
redhat enterprise_linux_workstation 7.0
mcafee epolicy_orchestrator 5.10.0
CVE-2019-2816 MEDIUM

Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Networking). Supported versions that are affected are Java SE: 7u221, 8u212, 11.0.3 and 12.0.1; Java SE Embedded: 8u211. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Java SE, Java SE Embedded accessible data as well as unauthorized read access to a subset of Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets (in Java SE 8), that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.0 Base Score 4.8 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.8 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N 2.2 2.5

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
oracle jre 11.0.3
redhat enterprise_linux_workstation 6.0
canonical ubuntu_linux 19.04
opensuse leap 15.1
oracle jre 1.7.0
canonical ubuntu_linux 16.04
redhat enterprise_linux 8.0
oracle jre 1.8.0
oracle jre 12.0.1
opensuse leap 15.0
oracle jdk 1.7.0
redhat enterprise_linux_server 6.0
canonical ubuntu_linux 18.04
oracle jdk 12.0.1
redhat enterprise_linux_desktop 6.0
redhat enterprise_linux_server 7.0
redhat enterprise_linux_desktop 7.0
oracle jdk 11.0.3
debian debian_linux 8.0
redhat enterprise_linux_eus 8.6
hp xp7_command_view *
oracle jdk 1.8.0
mcafee epolicy_orchestrator 5.9.0
redhat satellite 5.8
mcafee epolicy_orchestrator 5.9.1
redhat enterprise_linux_workstation 7.0
mcafee epolicy_orchestrator 5.10.0
CVE-2019-2842 MEDIUM

Vulnerability in the Java SE component of Oracle Java SE (subcomponent: JCE). The supported version that is affected is Java SE: 8u212. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets (in Java SE 8), that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.0 Base Score 3.7 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.7 LOW CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L 2.2 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
opensuse leap 15.1
mcafee epolicy_orchestrator 5.9.0
canonical ubuntu_linux 16.04
mcafee epolicy_orchestrator 5.9.1
oracle jre 1.8.0
opensuse leap 15.0
hp xp7_command_view *
oracle jdk 1.8.0
mcafee epolicy_orchestrator 5.10.0
CVE-2019-2894 MEDIUM

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Security). Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets (in Java SE 8), that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.0 Base Score 3.7 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.7 LOW CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N 2.2 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
canonical ubuntu_linux 19.04
opensuse leap 15.1
debian debian_linux 8.0
canonical ubuntu_linux 19.10
oracle jre 1.7.0
canonical ubuntu_linux 16.04
oracle jre 1.8.0
debian debian_linux 9.0
opensuse leap 15.0
oracle jdk 13.0.0
oracle jdk 1.7.0
oracle jdk 1.8.0
oracle jre 13.0.0
canonical ubuntu_linux 18.04
mcafee epolicy_orchestrator 5.9.0
oracle jdk 11.0.4
oracle jre 11.0.4
mcafee epolicy_orchestrator 5.9.1
mcafee epolicy_orchestrator 5.10.0
CVE-2019-2933 MEDIUM

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets (in Java SE 8), that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.0 Base Score 3.1 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.1 LOW CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N 1.6 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
opensuse leap 15.1
debian debian_linux 8.0
oracle jre 1.7.0
oracle jre 1.8.0
opensuse leap 15.0
oracle jdk 13.0.0
oracle jdk 1.7.0
oracle jdk 1.8.0
oracle jre 13.0.0
mcafee epolicy_orchestrator 5.9.0
oracle jdk 11.0.4
oracle jre 11.0.4
mcafee epolicy_orchestrator 5.9.1
mcafee epolicy_orchestrator 5.10.0
CVE-2019-2949 MEDIUM

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Kerberos). Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticated attacker with network access via Kerberos to compromise Java SE, Java SE Embedded. While the vulnerability is in Java SE, Java SE Embedded, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized access to critical data or complete access to all Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets (in Java SE 8), that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.0 Base Score 6.8 (Confidentiality impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.8 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N 2.2 4.0

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
redhat enterprise_linux_workstation 6.0
canonical ubuntu_linux 19.04
opensuse leap 15.1
canonical ubuntu_linux 19.10
netapp e-series_santricity_web_services_proxy -
netapp snapmanager -
netapp oncommand_workflow_automation -
oracle jre 1.7.0
canonical ubuntu_linux 16.04
oracle jre 1.8.0
debian debian_linux 9.0
opensuse leap 15.0
oracle jdk 13.0.0
oracle jdk 1.7.0
redhat enterprise_linux_server 6.0
debian debian_linux 10.0
netapp e-series_santricity_unified_manager -
oracle jre 13.0.0
canonical ubuntu_linux 18.04
oracle jre 11.0.4
redhat enterprise_linux_desktop 6.0
netapp e-series_santricity_storage_manager -
debian debian_linux 8.0
oracle jdk 1.8.0
mcafee epolicy_orchestrator 5.9.0
oracle jdk 11.0.4
mcafee epolicy_orchestrator 5.9.1
mcafee epolicy_orchestrator 5.10.0
netapp e-series_santricity_os_controller *
CVE-2019-2975 MEDIUM

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Scripting). Supported versions that are affected are Java SE: 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Java SE, Java SE Embedded accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets (in Java SE 8), that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.0 Base Score 4.8 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.8 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L 2.2 2.5

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
redhat enterprise_linux_workstation 6.0
canonical ubuntu_linux 19.04
opensuse leap 15.1
canonical ubuntu_linux 19.10
netapp e-series_santricity_web_services_proxy -
netapp snapmanager -
netapp oncommand_workflow_automation -
canonical ubuntu_linux 16.04
redhat enterprise_linux 8.0
oracle jre 1.8.0
debian debian_linux 9.0
opensuse leap 15.0
oracle jdk 13.0.0
redhat enterprise_linux_server 6.0
debian debian_linux 10.0
redhat enterprise_linux_eus 8.1
netapp e-series_santricity_unified_manager -
oracle jre 13.0.0
canonical ubuntu_linux 18.04
oracle jre 11.0.4
redhat enterprise_linux_desktop 6.0
redhat enterprise_linux_server 7.0
netapp e-series_santricity_storage_manager -
redhat enterprise_linux_desktop 7.0
redhat enterprise_linux_eus 8.6
oracle jdk 1.8.0
mcafee epolicy_orchestrator 5.9.0
oracle jdk 11.0.4
redhat satellite 5.8
mcafee epolicy_orchestrator 5.9.1
redhat enterprise_linux_workstation 7.0
mcafee epolicy_orchestrator 5.10.0
netapp e-series_santricity_os_controller *
CVE-2019-3581 MEDIUM

Improper input validation in the proxy component of McAfee Web Gateway 7.8.2.0 and later allows remote attackers to cause a denial of service via a crafted HTTP request parameter.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-20,CWE-20,

Products Affected

Vendor Product Version
mcafee mcafee_web_gateway *
CVE-2019-3582 MEDIUM

Privilege Escalation vulnerability in Microsoft Windows client in McAfee Endpoint Security (ENS) 10.6.1 and earlier allows local users to gain elevated privileges via a specific set of circumstances.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mcafee endpoint_security *
CVE-2019-3584 LOW

Exploitation of Authentication vulnerability in MVision Endpoint in McAfee MVision Endpoint Prior to 1811 Update 1 (18.11.31.62) allows authenticated administrator users --> administrators to Remove MVision Endpoint via unspecified vectors.

CVSS 2.0

Severity: LOW

Problem Type: CWE-287,

Products Affected

Vendor Product Version
mcafee mvision_endpoint *
CVE-2019-3585 HIGH

Privilege Escalation vulnerability in Microsoft Windows client (McTray.exe) in McAfee VirusScan Enterprise (VSE) 8.8 prior to Patch 14 may allow local users to interact with the On-Access Scan Messages - Threat Alert Window with elevated privileges via running McAfee Tray with elevated privileges.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9
trellixpsirt@trellix.com 7.0 HIGH CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H 1.0 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-269,CWE-269,

Products Affected

Vendor Product Version
mcafee virusscan_enterprise 8.8
CVE-2019-3586 MEDIUM

Protection Mechanism Failure in the Firewall in McAfee Endpoint Security (ENS) 10.x prior to 10.6.1 May 2019 update allows context-dependent attackers to circumvent ENS protection where GTI flagged IP addresses are not blocked by the ENS Firewall via specially crafted malicious sites where the GTI reputation is carefully manipulated and does not correctly trigger the ENS Firewall to block the connection.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:H 1.6 5.3

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-693,NVD-CWE-Other,

Products Affected

Vendor Product Version
mcafee endpoint_security *
mcafee endpoint_security 10.6.1
CVE-2019-3587 MEDIUM

DLL Search Order Hijacking vulnerability in Microsoft Windows client in McAfee Total Protection (MTP) Prior to 16.0.18 allows local users to execute arbitrary code via execution from a compromised folder.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-426,

Products Affected

Vendor Product Version
mcafee total_protection *
CVE-2019-3588 MEDIUM

Privilege Escalation vulnerability in Microsoft Windows client (McTray.exe) in McAfee VirusScan Enterprise (VSE) 8.8 prior to Patch 14 may allow unauthorized users to interact with the On-Access Scan Messages - Threat Alert Window when the Windows Login Screen is locked.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 6.3 MEDIUM CVSS:3.1/AV:P/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H 0.4 5.9
nvd@nist.gov 6.8 MEDIUM CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 0.9 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-269,CWE-269,

Products Affected

Vendor Product Version
mcafee virusscan_enterprise 8.8
CVE-2019-3591 MEDIUM

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in ePO extension in McAfee Data Loss Prevention (DLPe) for Windows 11.x prior to 11.3.0 allows unauthenticated remote user to trigger specially crafted JavaScript to render in the ePO UI via a carefully crafted upload to a remote website which is correctly blocked by DLPe Web Protection. This would then render as an XSS when the DLP Admin viewed the event in the ePO UI.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mcafee data_loss_prevention_endpoint *
CVE-2019-3592 MEDIUM

Privilege escalation vulnerability in McAfee Agent (MA) before 5.6.1 HF3, allows local administrator users to potentially disable some McAfee processes by manipulating the MA directory control and placing a carefully constructed file in the MA directory.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mcafee agent *
CVE-2019-3593 MEDIUM

Exploitation of Privilege/Trust vulnerability in Microsoft Windows client in McAfee Total Protection (MTP) Prior to 16.0.R18 allows local users to bypass product self-protection, tamper with policies and product files, and uninstall McAfee software without permission via specially crafted malware.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mcafee total_protection *
CVE-2019-3595 MEDIUM

Improper Neutralization of Special Elements used in a Command ('Command Injection') in ePO extension in McAfee Data Loss Prevention (DLP) 11.x prior to 11.3.0 allows Authenticated Adminstrator to execute arbitrary code with their local machine privileges via a specially crafted DLP policy, which is exported and opened on the their machine. In our checks, the user must explicitly allow the code to execute.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H 0.6 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-78,CWE-78,

Products Affected

Vendor Product Version
mcafee data_loss_prevention_endpoint *
CVE-2019-3597 HIGH

Authentication Bypass vulnerability in McAfee Network Security Manager (NSM) 9.1 < 9.1.7.75.2 and 9.2 < 9.2.7.31 (9.2 Update 2) allows unauthenticated users to gain administrator rights via incorrect handling of expired GUI sessions.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mcafee network_security_manager *
CVE-2019-3598 MEDIUM

Buffer Access with Incorrect Length Value in McAfee Agent (MA) 5.x allows remote unauthenticated users to potentially cause a denial of service via specifically crafted UDP packets.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
mcafee agent 5.6.0
mcafee agent *
CVE-2019-3599 MEDIUM

Information Disclosure vulnerability in Remote logging (which is disabled by default) in McAfee Agent (MA) 5.x allows remote unauthenticated users to access sensitive information via remote logging when it is enabled.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mcafee agent 5.6.0
mcafee agent *
CVE-2019-3602 LOW

Cross Site Scripting (XSS) vulnerability in McAfee Network Security Manager (NSM) Prior to 9.1 Update 5 allows an authenticated administrator to embed an XSS in the administrator interface via a specially crafted custom rule containing HTML.

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mcafee network_security_manager *
mcafee network_security_manager 9.1
CVE-2019-3604 MEDIUM

Cross-Site Request Forgery (CSRF) vulnerability in McAfee ePO (legacy) Cloud allows unauthenticated users to perform unintended ePO actions using an authenticated user's session via unspecified vectors.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator *
CVE-2019-3606 LOW

Data Leakage Attacks vulnerability in the web portal component when in an MDR pair in McAfee Network Security Management (NSM) 9.1 < 9.1.7.75 (Update 4) and 9.2 < 9.2.7.31 Update2 allows administrators to view configuration information in plain text format via the GUI or GUI terminal commands.

CVSS 2.0

Severity: LOW

Problem Type: CWE-312,

Products Affected

Vendor Product Version
mcafee network_security_manager *
CVE-2019-3610 LOW

Data Leakage Attacks vulnerability in Microsoft Windows client in McAfee True Key (TK) 3.1.9211.0 and earlier allows local users to expose confidential data via specially crafted malware.

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mcafee true_key *
CVE-2019-3612 LOW

Information Disclosure vulnerability in McAfee DXL Platform and TIE Server in DXL prior to 5.0.1 HF2 and TIE prior to 2.3.1 HF1 allows Authenticated users to view sensitive information in plain text via the GUI or command line.

CVSS 2.0

Severity: LOW

Problem Type: CWE-312,

Products Affected

Vendor Product Version
mcafee threat_intelligence_exchange *
mcafee data_exchange_layer *
CVE-2019-3613 MEDIUM

DLL Search Order Hijacking vulnerability in McAfee Agent (MA) prior to 5.6.4 allows attackers with local access to execute arbitrary code via execution from a compromised folder.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.3 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H 1.3 5.9
psirt@mcafee.com 5.9 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:N/I:H/A:N 1.5 4.0

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-427,CWE-427,

Products Affected

Vendor Product Version
mcafee agent *
CVE-2019-3615 LOW

Data Leakage Attacks vulnerability in the web interface in McAfee Database Security prior to the 4.6.6 March 2019 update allows local users to expose passwords via incorrectly auto completing password fields in the admin browser login screen.

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,

Products Affected

Vendor Product Version
mcafee database_security *
CVE-2019-3617 MEDIUM

Privilege escalation vulnerability in McAfee Total Protection (ToPS) for Mac OS prior to 4.6 allows local users to gain root privileges via incorrect protection of temporary files.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 7.5 HIGH CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H 0.8 6.0
nvd@nist.gov 8.2 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H 1.5 6.0

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-269,

Products Affected

Vendor Product Version
mcafee total_protection *
CVE-2019-3619 MEDIUM

Information Disclosure vulnerability in the Agent Handler in McAfee ePolicy Orchestrator (ePO) 5.9.x and 5.10.0 prior to 5.10.0 update 4 allows remote unauthenticated attacker to view sensitive information in plain text via sniffing the traffic between the Agent Handler and the SQL server.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-319,

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator 5.9.0
mcafee epolicy_orchestrator 5.9.1
mcafee epolicy_orchestrator 5.10.0
CVE-2019-3621 MEDIUM

Authentication protection bypass vulnerability in McAfee Data Loss Prevention (DLPe) for Windows 11.x prior to 11.3.0 allows physical local user to bypass the Windows lock screen via DLPe processes being killed just prior to the screen being locked or when the screen is locked. The attacker requires physical access to the machine.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mcafee data_loss_prevention_endpoint *
CVE-2019-3622 MEDIUM

Files or Directories Accessible to External Parties in McAfee Data Loss Prevention (DLPe) for Windows 11.x prior to 11.3.0 allows authenticated user to redirect DLPe log files to arbitrary locations via incorrect access control applied to the DLPe log folder allowing privileged users to create symbolic links.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.2 HIGH CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H 1.5 6.0

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-552,CWE-552,

Products Affected

Vendor Product Version
mcafee data_loss_prevention_endpoint *
CVE-2019-3628 MEDIUM

Privilege escalation in McAfee Enterprise Security Manager (ESM) 11.x prior to 11.2.0 allows authenticated user to gain access to a core system component via incorrect access control.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mcafee enterprise_security_manager *
CVE-2019-3629 MEDIUM

Application protection bypass vulnerability in McAfee Enterprise Security Manager (ESM) prior to 11.2.0 and prior to 10.4.0 allows unauthenticated user to impersonate system users via specially crafted parameters.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mcafee enterprise_security_manager *
CVE-2019-3630 MEDIUM

Command Injection vulnerability in McAfee Enterprise Security Manager (ESM) prior to 11.2.0 and prior to 10.4.0 allows authenticated user to execute arbitrary code via specially crafted parameters.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-78,

Products Affected

Vendor Product Version
mcafee enterprise_security_manager *
CVE-2019-3631 MEDIUM

Command Injection vulnerability in McAfee Enterprise Security Manager (ESM) prior to 11.2.0 and prior to 10.4.0 allows authenticated user to execute arbitrary code via specially crafted parameters.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-78,

Products Affected

Vendor Product Version
mcafee enterprise_security_manager *
CVE-2019-3632 MEDIUM

Directory Traversal vulnerability in McAfee Enterprise Security Manager (ESM) prior to 11.2.0 and prior to 10.4.0 allows authenticated user to gain elevated privileges via specially crafted input.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
mcafee enterprise_security_manager *
CVE-2019-3633 MEDIUM

Buffer overflow in McAfee Data Loss Prevention (DLPe) for Windows 11.x prior to 11.3.2.8 allows local user to cause the Windows operating system to "blue screen" via a carefully constructed message sent to DLPe which bypasses DLPe internal checks and results in DLPe reading unallocated memory.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,

Products Affected

Vendor Product Version
mcafee data_loss_prevention_endpoint *
CVE-2019-3634 MEDIUM

Buffer overflow in McAfee Data Loss Prevention (DLPe) for Windows 11.x prior to 11.3.2.8 allows local user to cause the Windows operating system to "blue screen" via an encrypted message sent to DLPe which when decrypted results in DLPe reading unallocated memory.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-119,CWE-125,

Products Affected

Vendor Product Version
mcafee data_loss_prevention_endpoint *
CVE-2019-3635 MEDIUM

Exfiltration of Data in McAfee Web Gateway (MWG) 7.8.2.x prior to 7.8.2.12 allows attackers to obtain sensitive data via crafting a complex webpage that will trigger the Web Gateway to block the user accessing an iframe.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mcafee web_gateway *
CVE-2019-3636 MEDIUM

A File Masquerade vulnerability in McAfee Total Protection (MTP) version 16.0.R21 and earlier in Windows client allowed an attacker to read the plaintext list of AV-Scan exclusion files from the Windows registry, and to possibly replace excluded files with potential malware without being detected.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 7.5 HIGH CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H 0.8 6.0
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-312,

Products Affected

Vendor Product Version
mcafee total_protection *
CVE-2019-3637 MEDIUM

Privilege Escalation vulnerability in McAfee FRP 5.x prior to 5.1.0.209 allows local users to gain elevated privileges via running McAfee Tray with elevated privileges.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mcafee file_and_removable_media_protection *
CVE-2019-3638 MEDIUM

Reflected Cross Site Scripting vulnerability in Administrators web console in McAfee Web Gateway (MWG) 7.8.x prior to 7.8.2.13 allows remote attackers to collect sensitive information or execute commands with the MWG administrator's credentials via tricking the administrator to click on a carefully constructed malicious link.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mcafee web_gateway *
CVE-2019-3639 MEDIUM

Clickjack vulnerability in Adminstrator web console in McAfee Web Gateway (MWG) 7.8.2.x prior to 7.8.2.12 allows remote attackers to conduct clickjacking attacks via a crafted web page that contains an iframe via does not send an X-Frame-Options HTTP header.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-1021,

Products Affected

Vendor Product Version
mcafee web_gateway *
CVE-2019-3640 MEDIUM

Unprotected Transport of Credentials in ePO extension in McAfee Data Loss Prevention 11.x prior to 11.4.0 allows remote attackers with access to the network to collect login details to the LDAP server via the ePO extension not using a secure connection when testing LDAP connectivity.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 4.8 MEDIUM CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:N/A:N 1.2 3.6
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-319,

Products Affected

Vendor Product Version
mcafee data_loss_prevention *
CVE-2019-3641 LOW

Abuse of Authorization vulnerability in APIs exposed by TIE server in McAfee Threat Intelligence Exchange Server (TIE Server) 3.0.0 allows remote authenticated users to modify stored reputation data via specially crafted messages.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 4.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:H/A:N 0.9 3.6
nvd@nist.gov 4.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:H/A:N 0.9 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-285,NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mcafee threat_intelligence_exchange_server 3.0.0
CVE-2019-3643 MEDIUM

McAfee Web Gateway (MWG) earlier than 7.8.2.13 is vulnerable to a remote attacker exploiting CVE-2019-9511, potentially leading to a denial of service. This affects the scanning proxies.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
trellixpsirt@trellix.com 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mcafee enterprise_security_manager 10.4.0
mcafee enterprise_security_manager 11.2.0
mcafee active_response 2.2
mcafee active_response 2.0
mcafee active_response 2.0.1
mcafee enterprise_security_manager 11.0.0
mcafee enterprise_security_manager 11.1.1
mcafee advanced_threat_defense 4.0
mcafee enterprise_security_manager 11.1.3
mcafee advanced_threat_defense 4.6
mcafee enterprise_security_manager 10.2.0
mcafee active_response 1.1.0
mcafee active_response 2.4
mcafee active_response 2.3
mcafee enterprise_security_manager 10.3.4
mcafee advanced_threat_defense 4.4
mcafee enterprise_security_manager 11.1.0
mcafee active_response 1.0.0
mcafee active_response 2.1
mcafee advanced_threat_defense 4.2
mcafee web_gateway *
mcafee enterprise_security_manager 11.1.2
CVE-2019-3644 MEDIUM

McAfee Web Gateway (MWG) earlier than 7.8.2.13 is vulnerable to a remote attacker exploiting CVE-2019-9517, potentially leading to a denial of service. This affects the scanning proxies.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mcafee enterprise_security_manager 10.4.0
mcafee enterprise_security_manager 11.2.0
mcafee active_response 2.2
mcafee active_response 2.0
mcafee active_response 2.0.1
mcafee enterprise_security_manager 11.0.0
mcafee enterprise_security_manager 11.1.1
mcafee advanced_threat_defense 4.0
mcafee enterprise_security_manager 11.1.3
mcafee advanced_threat_defense 4.6
mcafee enterprise_security_manager 10.2.0
mcafee active_response 1.1.0
mcafee active_response 2.4
mcafee active_response 2.3
mcafee enterprise_security_manager 10.3.4
mcafee advanced_threat_defense 4.4
mcafee enterprise_security_manager 11.1.0
mcafee active_response 1.0.0
mcafee active_response 2.1
mcafee advanced_threat_defense 4.2
mcafee web_gateway *
mcafee enterprise_security_manager 11.1.2
CVE-2019-3646 MEDIUM

DLL Search Order Hijacking vulnerability in Microsoft Windows client in McAfee Total Protection (MTP) Free Antivirus Trial 16.0.R18 and earlier allows local users to execute arbitrary code via execution from a compromised folder placed by an attacker with administrator rights.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H 0.6 5.9
trellixpsirt@trellix.com 6.9 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:L/I:H/A:L 1.1 5.3

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-714,CWE-426,

Products Affected

Vendor Product Version
mcafee total_protection *
CVE-2019-3648 HIGH

A Privilege Escalation vulnerability in the Microsoft Windows client in McAfee Total Protection 16.0.R22 and earlier allows administrators to execute arbitrary code via carefully placing malicious files in specific locations protected by administrator permission.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.8 5.9
trellixpsirt@trellix.com 6.1 MEDIUM CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:H/A:L 0.8 4.7

CVSS 2.0

Severity: HIGH

Problem Type: CWE-426,

Products Affected

Vendor Product Version
mcafee internet_security *
mcafee total_protection *
mcafee anti-virus_plus *
CVE-2019-3649 MEDIUM

Information Disclosure vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows remote authenticated attackers to gain access to hashed credentials via carefully constructed POST request extracting incorrectly recorded data from log files.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-532,

Products Affected

Vendor Product Version
mcafee advanced_threat_defense *
CVE-2019-3650 MEDIUM

Information Disclosure vulnerability in McAfee Advanced Threat Defense (ATD prior to 4.8 allows remote authenticated attackers to gain access to the atduser credentials via carefully constructed GET request extracting insecurely information stored in the database.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 2.8 3.6
trellixpsirt@trellix.com 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mcafee advanced_threat_defense *
CVE-2019-3651 MEDIUM

Information Disclosure vulnerability in McAfee Advanced Threat Defense (ATD prior to 4.8 allows remote authenticated attackers to gain access to ePO as an administrator via using the atduser credentials, which were too permissive.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-269,

Products Affected

Vendor Product Version
mcafee advanced_threat_defense *
CVE-2019-3652 MEDIUM

Code Injection vulnerability in EPSetup.exe in McAfee Endpoint Security (ENS) Prior to 10.6.1 October 2019 Update allows local user to get their malicious code installed by the ENS installer via code injection into EPSetup.exe by an attacker with access to the installer.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 5.0 MEDIUM CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:L 0.8 3.7
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L 1.8 3.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-94,CWE-94,

Products Affected

Vendor Product Version
mcafee endpoint_security *
mcafee endpoint_security 10.6.1
CVE-2019-3653 LOW

Improper access control vulnerability in Configuration tool in McAfee Endpoint Security (ENS) Prior to 10.6.1 October 2019 Update allows local user to gain access to security configuration via unauthorized use of the configuration tool.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N 1.8 3.6
trellixpsirt@trellix.com 4.6 MEDIUM CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:H/I:L/A:N 0.3 4.2

CVSS 2.0

Severity: LOW

Problem Type: CWE-284,NVD-CWE-Other,

Products Affected

Vendor Product Version
mcafee endpoint_security *
mcafee endpoint_security 10.16.1
CVE-2019-3654 MEDIUM

Authentication Bypass vulnerability in the Microsoft Windows client in McAfee Client Proxy (MCP) prior to 3.0.0 allows local user to bypass scanning of web traffic and gain access to blocked sites for a short period of time via generating an authorization key on the client which should only be generated by the network administrator.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 5.3 MEDIUM CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:N/A:H 0.8 4.0
nvd@nist.gov 8.6 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H 1.8 6.0

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,

Products Affected

Vendor Product Version
mcafee client_proxy *
CVE-2019-3660 MEDIUM

Improper Neutralization of HTTP requests in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows remote authenticated attacker to execute commands on the server remotely via carefully constructed HTTP requests.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 8.4 HIGH CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:H 1.8 6.0
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mcafee advanced_threat_defense *
CVE-2019-3661 MEDIUM

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows remote authenticated attacker to execute database commands via carefully constructed time based payloads.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 8.1 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N 2.8 5.2
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-89,

Products Affected

Vendor Product Version
mcafee advanced_threat_defense *
CVE-2019-3662 MEDIUM

Path Traversal: '/absolute/pathname/here' vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows remote authenticated attacker to gain unintended access to files on the system via carefully constructed HTTP requests.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 2.8 3.6
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
mcafee advanced_threat_defense *
CVE-2019-3663 LOW

Unprotected Storage of Credentials vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows local attacker to gain access to the root password via accessing sensitive files on the system. This was originally published with a CVSS rating of High, further investigation has resulted in this being updated to Critical. The root password is common across all instances of ATD prior to 4.8. See the Security bulletin for further details

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: LOW

Problem Type: CWE-522,

Products Affected

Vendor Product Version
mcafee advanced_threat_defense *
CVE-2019-3665 MEDIUM

Code Injection vulnerability in the web interface in McAfee Web Advisor (WA) prior to 4.1.1.48 allows remote unauthenticated attacker to allow the browser to render a website which Web Advisor would normally have blocked via a carefully crafted web site.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N 2.8 3.6
trellixpsirt@trellix.com 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-94,

Products Affected

Vendor Product Version
mcafee webadvisor *
CVE-2019-3666 MEDIUM

API Abuse/Misuse vulnerability in the web interface in McAfee Web Advisor (WA) prior to 4.1.1.48 allows remote unauthenticated attacker to allow the browser to navigate to restricted websites via a carefully crafted web site.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N 2.8 3.6
trellixpsirt@trellix.com 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
mcafee webadvisor *
CVE-2019-3667 MEDIUM

DLL Search Order Hijacking vulnerability in the Microsoft Windows client in McAfee Tech Check 3.0.0.17 and earlier allows local users to execute arbitrary code via the local folder placed there by an attacker.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 6.6 MEDIUM CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:H/A:L 0.8 5.3
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-427,

Products Affected

Vendor Product Version
mcafee techcheck *
CVE-2019-3670 MEDIUM

Remote Code Execution vulnerability in the web interface in McAfee Web Advisor (WA) 8.0.34745 and earlier allows remote unauthenticated attacker to execute arbitrary code via a cross site scripting attack.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7
trellixpsirt@trellix.com 8.0 HIGH CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:N 1.6 5.8

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mcafee web_advisor *
CVE-2019-3738 MEDIUM

RSA BSAFE Crypto-J versions prior to 6.2.5 are vulnerable to a Missing Required Cryptographic Step vulnerability. A malicious remote attacker could potentially exploit this vulnerability to coerce two parties into computing the same predictable shared key.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-325,CWE-347,

Products Affected

Vendor Product Version
dell bsafe_crypto-j *
oracle retail_predictive_application_server 15.0.3.0
oracle retail_xstore_point_of_service 18.0.2
oracle retail_predictive_application_server 16.0.3.0
mcafee threat_intelligence_exchange_server 3.0.0
oracle goldengate 19.1.0.0.0.210420
oracle retail_store_inventory_management 16.0.3
oracle database 18c
oracle communications_network_integrity 7.3.5
oracle retail_assortment_planning 16.0.3.0
oracle communications_network_integrity 7.3.2
oracle database 12.2.0.1
oracle communications_unified_inventory_management 7.4.0
oracle retail_store_inventory_management 15.0.3
oracle retail_xstore_point_of_service 17.0.3
oracle application_performance_management 13.4.0.0
oracle retail_xstore_point_of_service 19.0.1
oracle retail_integration_bus 14.1
oracle communications_unified_inventory_management 7.3.5
oracle retail_xstore_point_of_service 15.0.3
oracle retail_xstore_point_of_service 16.0.5
oracle retail_service_backbone 14.1
oracle retail_assortment_planning 15.0.3.0
oracle retail_store_inventory_management 14.1.3
oracle communications_network_integrity 7.3.6
oracle communications_unified_inventory_management 7.4.1
oracle application_performance_management 13.3.0.0
oracle retail_predictive_application_server 14.1.3.0
oracle retail_store_inventory_management 14.0.4
oracle database 12.1.0.2
oracle communications_unified_inventory_management 7.3.4
oracle retail_integration_bus 15.0
oracle database 19c
oracle goldengate *
dell bsafe_cert-j *
dell bsafe_ssl-j *
oracle retail_integration_bus 16.0
oracle storagetek_tape_analytics_sw_tool 2.3
oracle retail_service_backbone 16.0
mcafee threat_intelligence_exchange_server *
oracle communications_unified_inventory_management 7.3.2
oracle retail_service_backbone 15.0
CVE-2019-6454 MEDIUM

An issue was discovered in sd-bus in systemd 239. bus_process_object() in libsystemd/sd-bus/bus-objects.c allocates a variable-length stack buffer for temporarily storing the object path of incoming D-Bus messages. An unprivileged local user can exploit this by sending a specially crafted message to PID1, causing the stack pointer to jump over the stack guard pages into an unmapped memory region and trigger a denial of service (systemd PID1 crash and kernel panic).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-787,

Products Affected

Vendor Product Version
redhat enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions 7.4
redhat enterprise_linux_for_power_little_endian_eus 8.1
redhat enterprise_linux 8.0
redhat enterprise_linux_for_ibm_z_systems_eus 7.4
redhat enterprise_linux_eus 7.5
redhat enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions 7.3
redhat enterprise_linux_server_tus 7.3
redhat enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions 8.2
netapp active_iq_performance_analytics_services -
redhat enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions 8.0
fedoraproject fedora 29
mcafee web_gateway *
redhat enterprise_linux_eus 7.4
debian debian_linux 8.0
redhat enterprise_linux_for_power_little_endian_eus 7.4
redhat enterprise_linux_eus 8.4
redhat enterprise_linux_server_update_services_for_sap_solutions 8.1
redhat enterprise_linux_server_update_services_for_sap_solutions 8.0
redhat enterprise_linux_for_ibm_z_systems_eus 8.1
redhat enterprise_linux_server_tus 8.4
redhat enterprise_linux_server_update_services_for_sap_solutions 7.3
redhat enterprise_linux_compute_node_eus 7.5
redhat enterprise_linux_server_tus 7.6
canonical ubuntu_linux 18.10
canonical ubuntu_linux 16.04
redhat enterprise_linux_server_update_services_for_sap_solutions 8.2
redhat enterprise_linux_for_power_little_endian 8.0
debian debian_linux 9.0
opensuse leap 15.0
redhat enterprise_linux_for_power_little_endian_eus 8.4
redhat enterprise_linux_for_power_little_endian_eus 8.2
redhat enterprise_linux_server_aus 8.2
redhat enterprise_linux_server_aus 7.6
redhat enterprise_linux_server_eus 7.6
redhat enterprise_linux_eus 8.1
canonical ubuntu_linux 18.04
redhat enterprise_linux_eus 8.2
redhat enterprise_linux_server_aus 8.4
redhat enterprise_linux_server_aus 7.4
redhat enterprise_linux_server 7.0
redhat enterprise_linux_server_tus 7.4
redhat enterprise_linux_desktop 7.0
redhat enterprise_linux_for_ibm_z_systems_eus 8.4
redhat enterprise_linux_server_tus 8.2
redhat enterprise_linux_for_ibm_z_systems_eus 7.5
redhat enterprise_linux_server_update_services_for_sap_solutions 7.4
redhat enterprise_linux_server_for_power_little_endian_update_services_for_sap_solutions 8.1
redhat enterprise_linux_for_ibm_z_systems_eus 8.2
systemd_project systemd 239
redhat enterprise_linux_for_power_big_endian_eus 7.4
redhat enterprise_linux_workstation 7.0
redhat enterprise_linux_server_aus 7.3
redhat enterprise_linux_for_power_little_endian_eus 7.5
CVE-2019-9169 HIGH

In the GNU C Library (aka glibc or libc6) through 2.29, proceed_next_node in posix/regexec.c has a heap-based buffer over-read via an attempted case-insensitive regular-expression match.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-125,

Products Affected

Vendor Product Version
netapp steelstore_cloud_integrated_storage -
gnu glibc *
netapp cloud_backup *
canonical ubuntu_linux 18.04
canonical ubuntu_linux 19.10
canonical ubuntu_linux 16.04
netapp ontap_select_deploy_administration_utility -
mcafee web_gateway *
CVE-2019-9511 HIGH

Some HTTP/2 implementations are vulnerable to window size manipulation and stream prioritization manipulation, potentially leading to a denial of service. The attacker requests a large amount of data from a specified resource over multiple streams. They manipulate window size and stream priority to force the server to queue the data in 1-byte chunks. Depending on how efficiently this data is queued, this can consume excess CPU, memory, or both.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-400,CWE-770,

Products Affected

Vendor Product Version
redhat software_collections 1.0
canonical ubuntu_linux 19.04
opensuse leap 15.1
redhat jboss_enterprise_application_platform 7.3.0
canonical ubuntu_linux 16.04
apache traffic_server *
fedoraproject fedora 30
redhat enterprise_linux 8.0
debian debian_linux 9.0
opensuse leap 15.0
synology vs960hd_firmware -
debian debian_linux 10.0
redhat openshift_service_mesh 1.0
redhat jboss_enterprise_application_platform 7.2.0
canonical ubuntu_linux 18.04
oracle enterprise_communications_broker 3.2.0
oracle enterprise_communications_broker 3.1.0
fedoraproject fedora 29
mcafee web_gateway *
f5 nginx *
redhat jboss_core_services 1.0
apple swiftnio *
synology diskstation_manager 6.2
redhat quay 3.0.0
synology skynas -
oracle graalvm 19.2.0
nodejs node.js *
CVE-2019-9513 HIGH

Some HTTP/2 implementations are vulnerable to resource loops, potentially leading to a denial of service. The attacker creates multiple request streams and continually shuffles the priority of the streams in a way that causes substantial churn to the priority tree. This can consume excess CPU.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-400,NVD-CWE-Other,

Products Affected

Vendor Product Version
redhat software_collections 1.0
canonical ubuntu_linux 19.04
opensuse leap 15.1
redhat jboss_enterprise_application_platform 7.3.0
canonical ubuntu_linux 16.04
apache traffic_server *
fedoraproject fedora 30
redhat enterprise_linux 8.0
debian debian_linux 9.0
opensuse leap 15.0
synology vs960hd_firmware -
debian debian_linux 10.0
redhat openshift_service_mesh 1.0
redhat jboss_enterprise_application_platform 7.2.0
canonical ubuntu_linux 18.04
oracle enterprise_communications_broker 3.2.0
oracle enterprise_communications_broker 3.1.0
fedoraproject fedora 29
mcafee web_gateway *
f5 nginx *
redhat jboss_core_services 1.0
apple swiftnio *
synology diskstation_manager 6.2
redhat quay 3.0.0
synology skynas -
oracle graalvm 19.2.0
nodejs node.js *
CVE-2019-9514 HIGH

Some HTTP/2 implementations are vulnerable to a reset flood, potentially leading to a denial of service. The attacker opens a number of streams and sends an invalid request over each stream that should solicit a stream of RST_STREAM frames from the peer. Depending on how the peer queues the RST_STREAM frames, this can consume excess memory, CPU, or both.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-400,CWE-770,

Products Affected

Vendor Product Version
redhat software_collections 1.0
canonical ubuntu_linux 19.04
opensuse leap 15.1
redhat jboss_enterprise_application_platform 7.3.0
canonical ubuntu_linux 16.04
redhat openshift_container_platform 3.11
apache traffic_server *
fedoraproject fedora 30
redhat enterprise_linux 8.0
debian debian_linux 9.0
opensuse leap 15.0
synology vs960hd_firmware -
redhat openstack 14
netapp cloud_insights -
debian debian_linux 10.0
redhat enterprise_linux_eus 8.1
redhat openshift_service_mesh 1.0
redhat jboss_enterprise_application_platform 7.2.0
canonical ubuntu_linux 18.04
redhat single_sign-on 7.3
redhat openshift_container_platform 3.10
redhat openshift_container_platform 4.2
fedoraproject fedora 29
netapp trident -
redhat enterprise_linux_server 7.0
redhat openshift_container_platform 3.9
redhat openshift_container_platform 4.1
mcafee web_gateway *
redhat jboss_core_services 1.0
redhat developer_tools 1.0
apple swiftnio *
synology diskstation_manager 6.2
redhat quay 3.0.0
synology skynas -
f5 big-ip_local_traffic_manager *
oracle graalvm 19.2.0
nodejs node.js *
redhat enterprise_linux_workstation 7.0
CVE-2019-9515 HIGH

Some HTTP/2 implementations are vulnerable to a settings flood, potentially leading to a denial of service. The attacker sends a stream of SETTINGS frames to the peer. Since the RFC requires that the peer reply with one acknowledgement per SETTINGS frame, an empty SETTINGS frame is almost equivalent in behavior to a ping. Depending on how efficiently this data is queued, this can consume excess CPU, memory, or both.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-400,CWE-770,

Products Affected

Vendor Product Version
redhat software_collections 1.0
canonical ubuntu_linux 19.04
opensuse leap 15.1
redhat jboss_enterprise_application_platform 7.3.0
canonical ubuntu_linux 16.04
apache traffic_server *
fedoraproject fedora 30
redhat enterprise_linux 8.0
debian debian_linux 9.0
opensuse leap 15.0
synology vs960hd_firmware -
redhat openstack 14
debian debian_linux 10.0
redhat openshift_service_mesh 1.0
redhat jboss_enterprise_application_platform 7.2.0
canonical ubuntu_linux 18.04
redhat single_sign-on 7.3
fedoraproject fedora 29
redhat openshift_container_platform 4.1
mcafee web_gateway *
redhat jboss_core_services 1.0
apple swiftnio *
synology diskstation_manager 6.2
redhat quay 3.0.0
synology skynas -
f5 big-ip_local_traffic_manager *
oracle graalvm 19.2.0
nodejs node.js *
CVE-2019-9516 MEDIUM

Some HTTP/2 implementations are vulnerable to a header leak, potentially leading to a denial of service. The attacker sends a stream of headers with a 0-length header name and 0-length header value, optionally Huffman encoded into 1-byte or greater headers. Some implementations allocate memory for these headers and keep the allocation alive until the session dies. This can consume excess memory.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-400,CWE-770,

Products Affected

Vendor Product Version
fedoraproject fedora 32
redhat software_collections 1.0
canonical ubuntu_linux 19.04
opensuse leap 15.1
redhat jboss_enterprise_application_platform 7.3.0
canonical ubuntu_linux 16.04
apache traffic_server *
fedoraproject fedora 30
redhat enterprise_linux 8.0
debian debian_linux 9.0
opensuse leap 15.0
synology vs960hd_firmware -
debian debian_linux 10.0
redhat openshift_service_mesh 1.0
redhat jboss_enterprise_application_platform 7.2.0
canonical ubuntu_linux 18.04
fedoraproject fedora 29
mcafee web_gateway *
f5 nginx *
redhat jboss_core_services 1.0
apple swiftnio *
synology diskstation_manager 6.2
redhat quay 3.0.0
synology skynas -
oracle graalvm 19.2.0
nodejs node.js *
CVE-2019-9517 HIGH

Some HTTP/2 implementations are vulnerable to unconstrained interal data buffering, potentially leading to a denial of service. The attacker opens the HTTP/2 window so the peer can send without constraint; however, they leave the TCP window closed so the peer cannot actually write (many of) the bytes on the wire. The attacker then sends a stream of requests for a large response object. Depending on how the servers queue the responses, this can consume excess memory, CPU, or both.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-400,CWE-770,

Products Affected

Vendor Product Version
redhat software_collections 1.0
canonical ubuntu_linux 19.04
opensuse leap 15.1
redhat jboss_enterprise_application_platform 7.3.0
canonical ubuntu_linux 16.04
oracle communications_element_manager 8.1.0
oracle instantis_enterprisetrack *
apache traffic_server *
fedoraproject fedora 30
redhat enterprise_linux 8.0
debian debian_linux 9.0
opensuse leap 15.0
synology vs960hd_firmware -
apache http_server *
debian debian_linux 10.0
oracle communications_element_manager 8.0.0
redhat openshift_service_mesh 1.0
redhat jboss_enterprise_application_platform 7.2.0
canonical ubuntu_linux 18.04
fedoraproject fedora 29
mcafee web_gateway *
redhat jboss_core_services 1.0
apple swiftnio *
oracle retail_xstore_point_of_service 7.1
synology diskstation_manager 6.2
redhat quay 3.0.0
netapp clustered_data_ontap -
synology skynas -
oracle graalvm 19.2.0
nodejs node.js *
oracle communications_element_manager 8.2.0
oracle communications_element_manager 8.1.1
CVE-2019-9518 HIGH

Some HTTP/2 implementations are vulnerable to a flood of empty frames, potentially leading to a denial of service. The attacker sends a stream of frames with an empty payload and without the end-of-stream flag. These frames can be DATA, HEADERS, CONTINUATION and/or PUSH_PROMISE. The peer spends time processing each frame disproportionate to attack bandwidth. This can consume excess CPU.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: HIGH

Problem Type: CWE-400,CWE-770,

Products Affected

Vendor Product Version
redhat software_collections 1.0
canonical ubuntu_linux 19.04
opensuse leap 15.1
redhat jboss_enterprise_application_platform 7.3.0
canonical ubuntu_linux 16.04
apache traffic_server *
fedoraproject fedora 30
redhat enterprise_linux 8.0
debian debian_linux 9.0
opensuse leap 15.0
synology vs960hd_firmware -
debian debian_linux 10.0
redhat openshift_service_mesh 1.0
redhat jboss_enterprise_application_platform 7.2.0
canonical ubuntu_linux 18.04
fedoraproject fedora 29
mcafee web_gateway *
redhat jboss_core_services 1.0
apple swiftnio *
synology diskstation_manager 6.2
redhat quay 3.0.0
synology skynas -
oracle graalvm 19.2.0
nodejs node.js *
CVE-2020-0543 LOW

Incomplete cleanup from specific special register read operations in some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-459,

Products Affected

Vendor Product Version
intel celeron_3965y -
intel pentium_g3240 -
intel celeron_g4930 -
intel core_i5-8259u -
intel core_i7-7510u -
intel core_i3-5010u -
intel core_i7-8700 -
intel core_i3-7100e -
intel core_i3-4130 -
intel core_i7-8750h -
intel core_i5-3427u -
intel pentium_g3460 -
intel xeon_e3-1220_v5 -
siemens simatic_field_pg_m6_firmware *
intel core_i3-6120 -
intel core_i3-3250 -
intel core_i3-4350 -
intel core_i7-4500u -
intel xeon_e-2278ge -
intel core_i5-8400t -
intel core_i5-4670s -
intel celeron_2970m -
intel core_i5-4210u -
intel core_i5-5200u -
intel core_i5-3210m -
intel pentium_g3220 -
intel core_i5-8420 -
intel core_i3-3240 -
intel pentium_g3420 -
intel core_i5-4430 -
siemens simatic_ipc677e_firmware *
intel xeon_e-2124 -
intel core_i5-4570 -
intel pentium_g2120_v2 -
intel xeon_e3-1280_v5 -
intel core_i7-4790 -
siemens simotion_p320-4e_firmware *
intel xeon_e3-1230_v5 -
intel celeron_3765u -
intel core_i7-4702mq -
intel core_i7-4790s -
intel core_i7-4650u -
intel core_i7-4770hq -
intel core_i5-5675c -
siemens simatic_ipc3000_smart_firmware *
intel celeron_g3920 -
intel celeron_g3900 -
intel pentium_g4500 -
intel core_i5-7300u -
intel xeon_e3-1286_v3 -
intel core_i7-3630qm -
intel core_i7-4722hq -
intel xeon_e3-1235_v2 -
intel xeon_e3-1230_v6 -
intel core_i5-3570s -
intel xeon_e3-1245_v6 -
intel core_m-5y10a -
intel pentium_4415u -
intel xeon_e-2234 -
intel core_i7-4785t -
intel core_i5-6350hq -
intel core_i5-6400t -
intel celeron_1005m -
intel core_i5-4690s -
intel core_i3-8100t -
intel core_i5-3350p -
intel core_i5-3437u -
siemens simatic_ipc477d_firmware *
intel core_i5-7500u -
intel core_i7-3517ue -
intel xeon_e3-1240l_v5 -
intel core_i3-4030y -
intel core_i5-3330 -
intel core_i3-3245 -
intel core_i5-9600k -
intel core_i7-8500y -
intel xeon_e3-1501l_v6 -
intel core_i5-8310y -
intel xeon_e3-1240_v3 -
intel pentium_g3440t -
intel xeon_e3-1221_v3 -
intel core_i7-4702hq -
intel xeon_e-2186m -
intel xeon_e3-1241_v3 -
intel core_i3-4012y -
intel xeon_e3-1125c -
intel xeon_e3-1286l_v3 -
intel core_i7-5600u -
intel celeron_2957u -
intel xeon_e3-1246_v3 -
siemens simatic_ipc547e_firmware *
intel core_i7-4850hq -
intel core_i5-6310u -
intel xeon_e3-1275_v5 -
intel pentium_3560y -
intel core_i5-4460t -
intel xeon_e-2254ml -
intel core_i7-8569u -
intel core_i3-3110m -
intel core_i7-7660u -
intel core_i3-6320 -
intel core_i7-7600u -
intel xeon_e3-1565l_v5 -
intel core_i7-4510u -
mcafee threat_intelligence_exchange_server 3.0.0
siemens simatic_ipc827d_firmware *
intel core_i7-4712mq -
intel pentium_g2030t_v2 -
intel core_i7-4900mq -
intel core_i5-4430s -
intel core_i7-4558u -
intel core_i5-6210u -
intel core_i5-4210y -
intel celeron_1007u -
intel core_i5-4690 -
intel celeron_g1830 -
intel core_i7-6820eq -
intel xeon_e3-1220l_v3 -
intel core_i5-8400 -
intel core_i3-8350k -
intel pentium_g3240t -
intel xeon_e3-1258l_v4 -
intel core_i5-4300y -
intel xeon_e3-1225_v3 -
intel xeon_e3-1245_v5 -
intel core_i5-6440eq -
intel core_i7-4610y -
intel core_i3-2115c -
intel core_i7-5850eq -
intel pentium_g2020t_v2 -
intel core_i3-5006u -
intel core_i7-3537u -
intel xeon_e-2226g -
intel core_i7-3615qm -
intel core_i5-6360u -
siemens simatic_field_pg_m4_firmware *
intel core_i3-4100m -
intel core_i7-4550u -
intel core_i7-4950hq -
intel pentium_a1018_v2 -
intel core_i3-3250t -
intel core_i3-4330 -
intel core_i5-5350 -
intel xeon_e3-1231_v3 -
intel core_i5-3340 -
intel core_i5-8400b -
intel core_i7-8510y -
siemens simatic_ipc647d_firmware *
intel core_i7-3612qe -
intel core_i5-7267u -
intel celeron_1047ue -
intel xeon_e3-1235l_v5 -
intel core_i7-3612qm -
intel celeron_g3940 -
intel xeon_e3-1515m_v5 -
intel pentium_b925c -
intel celeron_g1840 -
intel core_i7-5750hq -
intel core_i7-4980hq -
intel core_i5-8305g -
intel xeon_e3-1270 -
intel core_i5-4570t -
intel core_i7-4710hq -
intel xeon_e-2244g -
intel core_i5-6600k -
intel celeron_1037u -
intel core_i5-3337u -
intel celeron_725c -
intel core_i7-4702ec -
intel core_i5-7440hq -
intel core_i5-6600t -
intel pentium_g5500 -
intel pentium_g2130_v2 -
intel xeon_e-2186g -
intel pentium_g3450t -
intel core_m-5y70 -
intel xeon_e3-1240l_v3 -
intel core_i3-7101e -
intel xeon_e3-1230_v2 -
intel core_i3-8000t -
intel pentium_g3260 -
intel xeon_e-2124g -
intel core_i3-5015u -
intel pentium_g3250t -
intel core_i7-7567u -
mcafee threat_intelligence_exchange_server *
intel core_i7-3770k -
intel core_i3-6100 -
intel core_i5-8500 -
intel core_i5-3570k -
intel pentium_4405u -
intel xeon_e3-1265l_v2 -
intel xeon_e3-1105c_v2 -
intel core_9300h -
intel core_i7-7820hq -
intel core_i3-4170 -
intel core_i9-9980hk -
intel core_i7-3555le -
intel core_i3-6300t -
intel core_i7-6650u -
intel core_i3-7110u -
intel core_i5-7y54 -
intel celeron_g1620t -
intel core_i7-8557u -
intel xeon_e-2284g -
intel xeon_e-2276ml -
intel core_m-5y71 -
intel core_i7-6660u -
intel core_i7-9700kf -
intel celeron_3865u -
intel core_i5-8210y -
intel pentium_3215u -
intel celeron_1017u -
intel core_i3-4340 -
intel core_i7-6920hq -
intel core_i7-7560u -
siemens simatic_field_pg_m5_firmware *
intel core_i7-4700mq -
intel core_i7-8550u -
intel core_i5-4220y -
intel core_i7-8565u -
intel core_i3-3220 -
intel core_i7-6820hk -
intel core_i7-4770s -
intel xeon_e-2246g -
intel pentium_g4420 -
intel core_i5-10210u -
intel core_i7-5550u -
siemens simatic_ipc427d_firmware *
intel core_i3-3240t -
intel core_i3-4360t -
fedoraproject fedora 32
intel core_i9-9880h -
intel core_i5-4460 -
intel core_i3-3217u -
intel xeon_e3-1278l_v4 -
intel core_i5-3380m -
intel core_i5-4278u -
intel celeron_g1620 -
intel core_i5-7442eq -
intel core_i5-4210h -
intel core_i5-8200y -
intel core_i5-4440 -
intel core_i5-7500 -
intel core_i7-3720qm -
intel core_i5-9400h -
intel core_i5-3340m -
canonical ubuntu_linux 20.04
intel core_i3-8100h -
intel core_m-5y10c -
intel core_i3-8300t -
intel celeron_2980u -
intel xeon_e3-1105c -
intel core_i3-7100u -
intel xeon_e3-1285_v4 -
intel core_i3-5020u -
intel core_i3-4010u -
intel core_i7-8665u -
intel core_i5-6440hq -
intel core_i7-4771 -
intel core_i7-4712hq -
intel xeon_e3-1501m_v6 -
intel core_i7-7700 -
intel xeon_e3-1225_v5 -
intel xeon_e3-1265l_v4 -
siemens simatic_ipc547g_firmware *
intel core_i7-6700 -
intel core_i5-4202y -
intel core_i3-7130u -
intel core_i7-5850hq -
intel core_i7-7740x -
intel xeon_e3-1585l_v5 -
intel core_i3-6167u -
intel xeon_e3-1285_v6 -
intel core_i7-3520m -
intel core_i7-8700t -
intel core_i3-4010y -
intel core_i7-6500u -
siemens simatic_ipc427e_firmware *
intel core_i7-8850h -
intel core_i3-7007u -
intel core_i9-8950hk -
intel core_i5-5575r -
intel core_i7-4760hq -
intel core_i5-8350u -
intel core_i7-6870hq -
intel core_i7-8559u -
intel xeon_e-2236 -
opensuse leap 15.2
intel core_i5-5250u -
intel xeon_e3-1275_v3 -
intel core_i7-7820hk -
intel celeron_2981u -
siemens simatic_ipc677d_firmware *
intel xeon_e3-1226_v3 -
intel xeon_e3-1290_v2 -
siemens simotion_p320-4s_firmware *
intel pentium_g3460t -
intel core_i5-9400 -
intel pentium_b915c -
intel core_i5-10110y -
intel core_4205u -
intel core_i7-4765t -
intel core_i7-7700k -
intel core_i7-5650u -
intel celeron_g4900 -
intel pentium_g5420 -
intel pentium_3665u -
intel core_i3-8109u -
intel xeon_e3-1230l_v3 -
intel celeron_1020e -
intel core_i7-3740qm -
intel core_i3-6102e -
intel pentium_3805u -
intel xeon_e-2224g -
intel pentium_g4400t -
intel core_i7-4600u -
intel core_i3-4360 -
intel core_i3-4160t -
intel core_i7-3820qm -
intel core_i7-3632qm -
intel core_i7-4790t -
intel celeron_g1820 -
intel core_i7-5950hq -
intel core_i5-6500te -
intel core_i3-4030u -
intel pentium_g4420t -
intel pentium_g2030_v2 -
intel xeon_e3-1270_v2 -
intel core_i3-4005u -
intel core_i5-7440eq -
intel core_i3-6120t -
intel core_i5-4308u -
intel core_i3-8145u -
intel xeon_e3-1505l_v6 -
intel xeon_e3-1535m_v5 -
intel core_i3-6100t -
intel core_i3-4160 -
intel core_i3-8130u -
intel core_m3-7y30 -
intel core_i3-4158u -
intel core_i5-4670r -
intel core_i5-8250u -
canonical ubuntu_linux 18.04
intel core_i5-3340s -
intel core_i3-4370 -
intel core_i5-7500t -
intel core_i7-6567u -
intel core_i3-4350t -
intel pentium_g3260t -
intel core_i3-7120t -
intel xeon_e3-1125c_v2 -
intel pentium_2129y_v2 -
intel core_i7-3517u -
intel core_i3-6300 -
intel core_i7-6770hq -
intel xeon_e3-1245_v3 -
intel core_i5-3450 -
intel pentium_g3450 -
intel pentium_3825u -
intel core_i5-3570 -
intel core_i5-4440s -
intel core_m-5y3 -
intel celeron_g4950 -
intel xeon_e-2274g -
intel core_i3-7120 -
intel core_i3-4150 -
intel pentium_g3470 -
intel core_m3-8100y -
intel core_i5-6200u -
intel core_i5-7200u -
intel xeon_e3-1275l_v3 -
intel core_i3-3227u -
intel pentium_g5400t -
intel celeron_g4920 -
intel core_i5-3550s -
intel xeon_e3-1270_v5 -
intel core_i7-8700b -
intel core_i5-3330s -
intel core_i7-4960hq -
intel xeon_e3-1245_v2 -
intel core_i5-10310y -
intel core_i3-i3-8100h -
intel core_i7-7700hq -
intel core_i5-5350u -
intel core_i7-3610qe -
intel core_i5-8600 -
intel core_i7-6600u -
canonical ubuntu_linux 14.04
siemens simatic_itp1000_firmware *
intel xeon_e3-1280_v3 -
intel core_i7-6700te -
intel pentium_g4520 -
intel core_i7-3540m -
intel core_i5-4690t -
intel xeon_e3-1260l_v5 -
intel core_i7-4870hq -
intel core_i7-4700ec -
intel xeon_e3-1276_v3 -
intel core_i5-7640x -
intel pentium_g3430 -
intel core_i9-9900kf -
intel xeon_e-2134 -
intel core_i7-4770r -
intel xeon_e3-1275_v6 -
intel xeon_e3-1225_v6 -
intel core_i3-8020 -
intel core_i7-4800mq -
intel core_i3-8100 -
intel celeron_927ue -
intel core_i7-4750hq -
intel core_i3-4020y -
intel celeron_g1610t -
intel core_i7-6510u -
intel core_i7-9700k -
intel xeon_e-2276m -
intel xeon_e3-1225_v2 -
intel pentium_g4400te -
intel core_i5-3550 -
intel xeon_e3-1275_v2 -
intel core_i5-5257u -
intel xeon_e-2224 -
intel core_i3-3120m -
intel pentium_g5600 -
intel celeron_3965u -
intel xeon_e3-1505m_v6 -
intel core_i7-8706g -
intel core_i5-6267u -
intel core_i7-3667u -
intel core_i7-6822eq -
fedoraproject fedora 31
intel core_i5-6442eq -
intel core_i5-4200u -
intel core_5405u -
intel celeron_g3930te -
intel core_i5-4250u -
intel core_i7-3635qm -
intel core_i3-6320t -
intel core_i3-3120me -
intel core_i7-4710mq -
intel core_m-5y51 -
intel pentium_3561y -
intel core_i7-4810mq -
intel xeon_e-2226ge -
intel celeron_1000m -
intel core_i5-7210u -
intel core_i3-6100te -
intel core_i5-6300u -
intel pentium_2117u_v2 -
intel pentium_3765u -
intel core_i3-8300 -
intel core_i5-3317u -
intel core_i5-6600 -
intel core_i7-8670t -
intel core_i5-7600k -
intel core_i5-3475s -
intel core_i7-7y75 -
intel core_i5-8500b -
intel core_i7-10510u -
intel pentium_g4400 -
intel xeon_e3-1220_v2 -
intel core_i5-3470s -
intel pentium_g2100t_v2 -
intel core_8269u -
intel core_i7-6820hq -
intel core_i5-6260u -
intel xeon_e3-1505m_v5 -
intel core_i5-6400 -
intel core_i5-4590t -
intel core_i7-5775r -
intel celeron_g3902e -
intel xeon_e3-1240_v5 -
intel core_i7-3610qm -
intel pentium_g5500t -
intel core_i3-6100e -
intel core_i9-9900k -
intel celeron_2955u -
intel core_i3-4130t -
intel core_i7-7500u -
intel core_i7-3689y -
intel pentium_g4500t -
intel celeron_3955u -
intel pentium_2127u_v2 -
intel core_i5-4288u -
intel core_i7-8700k -
intel core_i7-4770 -
intel core_i3-4025u -
intel core_i5-3320m -
intel core_i5-3570t -
intel core_i5-7400 -
canonical ubuntu_linux 12.04
intel core_i7-6560u -
intel core_i7-7920hq -
intel core_i5-3439y -
intel core_i5-3470 -
intel pentium_3556u -
intel core_i5-8420t -
intel xeon_e-2136 -
intel core_i5-6500t -
intel core_i5-3470t -
intel core_i7-6970hq -
intel core_i5-3450s -
intel core_i5-4570s -
intel core_i7-3770t -
intel pentium_g3250 -
intel core_i7-4860hq -
intel core_i3-7340 -
intel pentium_g2140_v2 -
intel celeron_g1840t -
intel xeon_e3-1535m_v6 -
intel core_i5-6300hq -
intel core_i5-4258u -
intel core_i3-4120u -
intel pentium_g3420t -
siemens simatic_ipc647e_firmware *
intel core_i5-4590s -
intel xeon_e-2278gel -
intel xeon_e3-1270_v6 -
intel core_4415y -
intel core_i7-4720hq -
intel core_i7-9850h -
intel pentium_4405y -
intel core_i5-3230m -
siemens simatic_ipc477e_pro_firmware *
intel pentium_g2120t_v2 -
siemens simatic_ipc847e_firmware *
intel core_i5-7287u -
intel xeon_e-2276me -
intel core_i5-8600t -
siemens simatic_ipc627d_firmware *
intel core_i3-4170t -
intel core_i3-7102e -
intel core_i5-4670k -
intel core_i3-3217ue -
intel xeon_e-2254me -
intel core_i5-4402ec -
intel core_i7-5775c -
intel core_i5-5675r -
intel core_i7-4700hq -
intel xeon_e-2278g -
intel core_i3-7100h -
intel xeon_e-2286m -
intel celeron_g1820t -
intel core_i7-3687u -
intel pentium_1405_v2 -
intel core_i7-4770k -
intel core_i5-4590 -
intel pentium_3558u -
intel core_i5-9600kf -
intel celeron_g3900te -
intel core_i7-8670 -
intel core_9750hf -
intel xeon_e-2146g -
intel xeon_e3-1230_v3 -
canonical ubuntu_linux 19.10
intel xeon_e-2126g -
intel core_i5-10210y -
intel core_i3-7320t -
intel core_i5-8500t -
intel xeon_e3-1575m_v5 -
intel core_i7-3840qm_ -
intel core_m5-6y57 -
intel core_i7-8709g -
intel xeon_e3-1285_v3 -
intel core_i5-4302y -
intel core_i7-3770s -
siemens simatic_ipc477e_firmware *
intel core_i3-3210 -
intel pentium_g5400 -
intel core_i3-4150t -
intel core_i7-5500u -
intel core_i7-7700t -
intel xeon_e3-1585_v5 -
intel core_i7-8705g -
intel xeon_e-2176g -
intel xeon_e3-1240_v2 -
intel celeron_g1630 -
intel celeron_g1610 -
intel pentium_g4540 -
intel pentium_g3440 -
intel celeron_3855u -
intel core_i5-8650 -
siemens simatic_ipc527g_firmware *
intel core_4410y -
intel core_i3-7101te -
intel core_i7-3920xm -
intel xeon_e3-1220l_v2 -
intel core_i3-3115c -
intel core_i7-8809g -
intel pentium_g5420t -
intel core_i5-7y57_ -
intel core_i5-4200y -
intel core_i5-8400h -
siemens simatic_ipc627e_firmware *
canonical ubuntu_linux 16.04
intel xeon_e3-1240_v6 -
intel core_i3-5005u -
intel core_i3-6100h -
intel pentium_3560m -
intel celeron_g4900t -
intel core_i3-5157u -
intel xeon_e3-1220_v3 -
intel xeon_e3-1268l_v5 -
intel core_m7-6y75 -
intel core_i5-7400t -
intel xeon_e3-1280_v2 -
intel core_i3-3130m -
intel xeon_e-2144g -
intel core_i5-8600k -
intel pentium_g4520t -
intel core_i3-4330t -
intel core_i5-7600t -
intel core_i3-8000 -
intel pentium_3205u -
intel core_i5-4460s -
intel core_i5-6500 -
intel core_i5-3360m -
intel core_i7-5557u -
intel xeon_e-2288g -
intel core_m-5y10 -
intel core_i3-8120 -
intel core_i5-4570r -
intel core_i5-7300hq -
intel core_i5-3339y -
intel xeon_e-2276g -
opensuse leap 15.1
intel core_i3-7020u -
intel pentium_g2010_v2 -
intel core_i3-6100u -
intel core_i5-9400f -
intel core_m5-6y54 -
intel xeon_e3-1268l_v3 -
intel core_i7-7820eq -
intel core_i7-8650u -
intel core_i7-6700t -
intel core_i5-6287u -
intel core_i7-4578u -
intel pentium_gold_6405u -
intel xeon_e3-1558l_v5 -
intel celeron_1020m -
intel xeon_e3-1220_v6 -
intel core_i3-3225 -
intel core_i7-5700eq -
intel xeon_e3-1280_v6 -
intel xeon_e3-1545m_v5 -
intel celeron_g1850 -
intel core_i5-4350u -
intel celeron_3755u -
intel core_i5-8550 -
intel core_i5-8300h -
intel core_i5-5287u -
intel celeron_g3900t -
intel core_i5-8265u -
intel core_m3-6y30 -
intel core_i5-4670 -
intel pentium_g3258 -
intel xeon_e3-1578l_v5 -
intel core_i3-6110u -
intel pentium_g2020_v2 -
intel xeon_e3-1265l -
intel core_i7-3615qe -
intel celeron_g3930e -
intel core_i3-3229y -
intel core_i7-8560u -
intel core_i7-5700hq -
intel core_i5-7600 -
intel pentium_g3220t -
intel xeon_e3-1505l_v5 -
intel core_i7-10510y -
intel core_i3-4110m -
intel core_i5-4300u -
intel core_i5-7360u -
siemens simatic_ipc847d_firmware *
intel core_i5-7260u -
intel core_i3-4370t -
intel core_i7-6700k -
intel xeon_e3-1271_v3 -
intel xeon_e-2184g -
siemens simatic_ipc347e_firmware *
intel xeon_e-2176m -
intel xeon_e-2174g -
intel core_i7-3940xm -
intel core_i7-3770 -
intel core_i3-4100u -
intel core_i5-8650k -
intel xeon_e3-1285l_v3 -
intel celeron_g3920t -
intel core_i7-6700hq -
intel celeron_1019y -
intel core_i5-4670t -
intel xeon_e3-1281_v3 -
intel core_i5-8365u -
intel core_i7-4910mq -
intel pentium_2020m_v2 -
intel core_i3-7167u -
intel core_i5-3610me -
intel core_i7-4770t -
intel pentium_2030m_v2 -
intel core_i7-4700eq -
intel core_i5-4260u -
intel celeron_5305u -
intel core_i3-3220t -
CVE-2020-13935 MEDIUM

The payload length in a WebSocket frame was not correctly validated in Apache Tomcat 10.0.0-M1 to 10.0.0-M6, 9.0.0.M1 to 9.0.36, 8.5.0 to 8.5.56 and 7.0.27 to 7.0.104. Invalid payload lengths could trigger an infinite loop. Multiple requests with invalid payload lengths could lead to a denial of service.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-835,

Products Affected

Vendor Product Version
oracle workload_manager 18c
oracle managed_file_transfer 12.2.1.4.0
opensuse leap 15.1
opensuse leap 15.2
oracle blockchain_platform *
apache tomcat 9.0.0
canonical ubuntu_linux 16.04
oracle agile_plm 9.3.3
oracle siebel_ui_framework *
debian debian_linux 9.0
oracle instantis_enterprisetrack 17.1
oracle agile_plm 9.3.6
oracle managed_file_transfer 12.2.1.3.0
apache tomcat 10.0.0
debian debian_linux 10.0
oracle agile_plm 9.3.5
oracle communications_instant_messaging_server 10.0.1.5.0
oracle commerce_guided_search 11.3.2
canonical ubuntu_linux 20.04
oracle workload_manager 12.2.0.1
oracle fmw_platform 12.2.1.4.0
oracle mysql_enterprise_monitor *
oracle fmw_platform 12.2.1.3.0
oracle instantis_enterprisetrack 17.3
oracle workload_manager 19c
netapp oncommand_system_manager *
apache tomcat *
mcafee epolicy_orchestrator 5.9.0
oracle communications_cloud_native_core_policy 1.14.0
mcafee epolicy_orchestrator 5.9.1
oracle instantis_enterprisetrack 17.2
mcafee epolicy_orchestrator 5.10.0
oracle agile_engineering_data_management 6.2.1.0
CVE-2020-13938 LOW

Apache HTTP Server versions 2.4.0 to 2.4.46 Unprivileged local users can stop httpd on Windows

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-862,

Products Affected

Vendor Product Version
netapp cloud_backup -
mcafee epolicy_orchestrator *
apache http_server *
mcafee epolicy_orchestrator 5.10.0
CVE-2020-14578 MEDIUM

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u261 and 8u251; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded. Note: Applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.1 Base Score 3.7 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.7 LOW CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L 2.2 1.4
secalert_us@oracle.com 3.7 LOW CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L 2.2 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
fedoraproject fedora 32
opensuse leap 15.2
netapp cloud_backup -
netapp snapmanager -
netapp oncommand_workflow_automation -
netapp e-series_performance_analyzer -
netapp storagegrid *
oracle jre 1.7.0
canonical ubuntu_linux 16.04
oracle jre 1.8.0
debian debian_linux 9.0
oracle jdk 1.7.0
netapp storagegrid -
netapp santricity_unified_manager -
debian debian_linux 10.0
canonical ubuntu_linux 18.04
canonical ubuntu_linux 20.04
fedoraproject fedora 31
netapp 7-mode_transition_tool -
netapp cloud_secure_agent -
netapp e-series_santricity_web_services -
netapp steelstore_cloud_integrated_storage -
netapp active_iq_unified_manager *
oracle jdk 1.8.0
netapp oncommand_insight -
mcafee epolicy_orchestrator 5.9.0
oracle openjdk 8
mcafee epolicy_orchestrator 5.9.1
mcafee epolicy_orchestrator 5.10.0
netapp e-series_santricity_os_controller *
oracle openjdk 7
CVE-2020-14579 MEDIUM

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u261 and 8u251; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded. Note: Applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.1 Base Score 3.7 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.7 LOW CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L 2.2 1.4
secalert_us@oracle.com 3.7 LOW CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L 2.2 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
fedoraproject fedora 32
opensuse leap 15.2
netapp cloud_backup -
netapp snapmanager -
netapp oncommand_workflow_automation -
netapp e-series_performance_analyzer -
netapp storagegrid *
oracle jre 1.7.0
canonical ubuntu_linux 16.04
oracle jre 1.8.0
debian debian_linux 9.0
oracle jdk 1.7.0
netapp storagegrid -
netapp santricity_unified_manager -
debian debian_linux 10.0
canonical ubuntu_linux 18.04
canonical ubuntu_linux 20.04
fedoraproject fedora 31
netapp 7-mode_transition_tool -
netapp cloud_secure_agent -
netapp e-series_santricity_web_services -
netapp steelstore_cloud_integrated_storage -
netapp active_iq_unified_manager *
oracle jdk 1.8.0
netapp oncommand_insight -
mcafee epolicy_orchestrator 5.9.0
oracle openjdk 8
mcafee epolicy_orchestrator 5.9.1
mcafee epolicy_orchestrator 5.10.0
netapp e-series_santricity_os_controller *
oracle openjdk 7
CVE-2020-14581 MEDIUM

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: 2D). Supported versions that are affected are Java SE: 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized read access to a subset of Java SE, Java SE Embedded accessible data. Note: Applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.1 Base Score 3.7 (Confidentiality impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
secalert_us@oracle.com 3.7 LOW CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N 2.2 1.4
nvd@nist.gov 3.7 LOW CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N 2.2 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
oracle jdk 14.0.1
opensuse leap 15.1
opensuse leap 15.2
oracle jre 14.0.1
netapp snapmanager -
netapp oncommand_workflow_automation -
netapp e-series_performance_analyzer -
oracle jre 1.8.0
netapp santricity_unified_manager -
oracle openjdk 11.0.6
oracle openjdk 11
oracle openjdk 13.0.1
netapp 7-mode_transition_tool -
oracle openjdk 14
oracle openjdk 11.0.4
oracle jdk 1.8.0
oracle openjdk 8
oracle openjdk 11.0.2
oracle openjdk 11.0.5
mcafee epolicy_orchestrator 5.10.0
netapp e-series_santricity_os_controller *
oracle openjdk 7
fedoraproject fedora 32
oracle openjdk 13.0.2
netapp cloud_backup -
netapp storagegrid *
canonical ubuntu_linux 16.04
oracle jre 11.0.7
oracle openjdk 13.0.3
debian debian_linux 9.0
oracle jdk 1.7.0
netapp storagegrid -
oracle jdk 11.0.7
debian debian_linux 10.0
oracle openjdk 11.0.1
canonical ubuntu_linux 18.04
canonical ubuntu_linux 20.04
fedoraproject fedora 31
netapp cloud_secure_agent -
netapp e-series_santricity_web_services -
netapp steelstore_cloud_integrated_storage -
oracle openjdk 11.0.3
netapp active_iq_unified_manager *
netapp oncommand_insight -
mcafee epolicy_orchestrator 5.9.0
oracle openjdk 11.0.7
mcafee epolicy_orchestrator 5.9.1
oracle openjdk 13
CVE-2020-14621 MEDIUM

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: JAXP). Supported versions that are affected are Java SE: 7u261, 8u251, 11.0.7 and 14.0.1; Java SE Embedded: 8u251. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Java SE, Java SE Embedded accessible data. Note: This vulnerability can only be exploited by supplying data to APIs in the specified Component without using Untrusted Java Web Start applications or Untrusted Java applets, such as through a web service. CVSS 3.1 Base Score 5.3 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
secalert_us@oracle.com 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N 3.9 1.4
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
oracle jdk 14.0.1
opensuse leap 15.1
opensuse leap 15.2
oracle jre 14.0.1
netapp snapmanager -
netapp oncommand_workflow_automation -
netapp e-series_performance_analyzer -
oracle jre 1.7.0
oracle jre 1.8.0
netapp santricity_unified_manager -
oracle openjdk 11.0.6
oracle openjdk 11
oracle openjdk 13.0.1
netapp 7-mode_transition_tool -
oracle openjdk 14
oracle openjdk 11.0.4
oracle jdk 1.8.0
oracle openjdk 8
oracle openjdk 11.0.2
netapp plug-in_for_symantec_netbackup -
oracle openjdk 11.0.5
mcafee epolicy_orchestrator 5.10.0
netapp e-series_santricity_os_controller *
oracle openjdk 7
fedoraproject fedora 32
oracle openjdk 13.0.2
netapp cloud_backup -
netapp oncommand_unified_manager_core_package -
canonical ubuntu_linux 16.04
oracle jre 11.0.7
oracle openjdk 13.0.3
debian debian_linux 9.0
oracle jdk 1.7.0
oracle jdk 11.0.7
netapp active_iq_unified_manager -
debian debian_linux 10.0
oracle openjdk 11.0.1
canonical ubuntu_linux 18.04
canonical ubuntu_linux 20.04
fedoraproject fedora 31
netapp cloud_secure_agent -
netapp e-series_santricity_web_services -
netapp e-series_santricity_storage_manager -
netapp steelstore_cloud_integrated_storage -
oracle openjdk 11.0.3
netapp oncommand_insight -
mcafee epolicy_orchestrator 5.9.0
oracle openjdk 11.0.7
mcafee epolicy_orchestrator 5.9.1
oracle openjdk 13
CVE-2020-14782 MEDIUM

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Java SE, Java SE Embedded accessible data. Note: Applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.1 Base Score 3.7 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
secalert_us@oracle.com 3.7 LOW CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N 2.2 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
opensuse leap 15.2
oracle openjdk 13.0.2
netapp e-series_santricity_web_services_proxy -
netapp oncommand_workflow_automation -
netapp e-series_performance_analyzer -
oracle jre 1.7.0
oracle openjdk 15
oracle openjdk 13.0.3
oracle jre 1.8.0
oracle openjdk 11.0.8
debian debian_linux 9.0
oracle jdk 1.7.0
netapp santricity_unified_manager -
oracle openjdk 11.0.6
debian debian_linux 10.0
oracle openjdk 11
oracle openjdk 11.0.1
oracle jdk 15
oracle openjdk 13.0.1
oracle jre 15
oracle jre 11.0.8
oracle openjdk 11.0.4
netapp e-series_santricity_storage_manager -
netapp steelstore_cloud_integrated_storage -
oracle openjdk 13.0.4
netapp e-series_santricity_management_plug-ins -
oracle openjdk 11.0.3
netapp active_iq_unified_manager *
oracle jdk 1.8.0
netapp oncommand_insight -
mcafee epolicy_orchestrator 5.9.0
oracle openjdk 8
oracle openjdk 11.0.2
oracle openjdk 11.0.7
mcafee epolicy_orchestrator 5.9.1
oracle jdk 11.0.8
oracle openjdk 11.0.5
mcafee epolicy_orchestrator 5.10.0
netapp e-series_santricity_os_controller *
oracle openjdk 7
oracle openjdk 13
CVE-2020-14792 MEDIUM

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Hotspot). Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks require human interaction from a person other than the attacker. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Java SE, Java SE Embedded accessible data as well as unauthorized read access to a subset of Java SE, Java SE Embedded accessible data. Note: Applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.1 Base Score 4.2 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
secalert_us@oracle.com 4.2 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N 1.6 2.5

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
netapp oncommand_unified_manager -
opensuse leap 15.2
oracle openjdk 13.0.2
netapp e-series_santricity_web_services_proxy -
netapp snapmanager -
oracle jre 1.7.0
oracle openjdk 15
oracle openjdk 13.0.3
oracle jre 1.8.0
oracle openjdk 11.0.8
debian debian_linux 9.0
oracle jdk 1.7.0
netapp hci_management_node -
netapp santricity_unified_manager -
oracle openjdk 11.0.6
debian debian_linux 10.0
oracle openjdk 11
oracle openjdk 11.0.1
oracle jdk 15
oracle openjdk 13.0.1
netapp 7-mode_transition_tool -
oracle jre 15
oracle jre 11.0.8
oracle openjdk 11.0.4
netapp e-series_santricity_storage_manager -
netapp hci_storage_node -
oracle openjdk 13.0.4
netapp solidfire -
oracle openjdk 11.0.3
netapp active_iq_unified_manager *
netapp santricity_cloud_connector -
oracle jdk 1.8.0
netapp oncommand_insight -
mcafee epolicy_orchestrator 5.9.0
oracle openjdk 8
oracle openjdk 11.0.2
oracle openjdk 11.0.7
mcafee epolicy_orchestrator 5.9.1
oracle jdk 11.0.8
oracle openjdk 11.0.5
mcafee epolicy_orchestrator 5.10.0
netapp e-series_santricity_os_controller *
oracle openjdk 7
oracle openjdk 13
CVE-2020-15719 MEDIUM

libldap in certain third-party OpenLDAP packages has a certificate-validation flaw when the third-party package is asserting RFC6125 support. It considers CN even when there is a non-matching subjectAltName (SAN). This is fixed in, for example, openldap-2.4.46-10.el8 in Red Hat Enterprise Linux.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.2 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:L/A:N 1.6 2.5

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-295,

Products Affected

Vendor Product Version
mcafee policy_auditor *
opensuse leap 15.1
opensuse leap 15.2
oracle blockchain_platform *
openldap openldap *
redhat enterprise_linux 8.0
CVE-2020-2583 MEDIUM

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Serialization). Supported versions that are affected are Java SE: 7u241, 8u231, 11.0.5 and 13.0.1; Java SE Embedded: 8u231. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets (in Java SE 8), that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.0 Base Score 3.7 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.7 LOW CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L 2.2 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-755,

Products Affected

Vendor Product Version
redhat enterprise_linux_workstation 6.0
opensuse leap 15.1
canonical ubuntu_linux 19.10
netapp oncommand_workflow_automation -
netapp e-series_performance_analyzer -
oracle jre 1.7.0
redhat enterprise_linux 8.0
oracle jre 1.8.0
redhat enterprise_linux_eus 7.7
netapp santricity_unified_manager -
oracle openjdk 11
oracle openjdk 13.0.1
redhat enterprise_linux_desktop 6.0
oracle openjdk 11.0.4
debian debian_linux 8.0
redhat enterprise_linux_server_tus 7.7
oracle jdk 1.8.0
oracle openjdk 8
oracle openjdk 11.0.2
oracle openjdk 11.0.5
mcafee epolicy_orchestrator 5.10.0
netapp e-series_santricity_os_controller *
oracle openjdk 7
canonical ubuntu_linux 16.04
debian debian_linux 9.0
oracle jdk 1.7.0
oracle jdk 13.0.1
redhat enterprise_linux_server 6.0
debian debian_linux 10.0
oracle openjdk 11.0.1
redhat enterprise_linux_eus 8.1
canonical ubuntu_linux 18.04
redhat enterprise_linux_server_aus 7.7
oracle jre 11.0.5
netapp e-series_santricity_web_services -
redhat enterprise_linux_server 7.0
oracle jre 13.0.1
netapp e-series_santricity_storage_manager -
redhat enterprise_linux_desktop 7.0
netapp steelstore_cloud_integrated_storage -
oracle openjdk 11.0.3
netapp active_iq_unified_manager *
netapp e-series_santricity_management -
netapp oncommand_insight -
mcafee epolicy_orchestrator 5.9.0
oracle jdk 11.0.5
mcafee epolicy_orchestrator 5.9.1
redhat enterprise_linux_workstation 7.0
oracle openjdk 13
CVE-2020-2590 MEDIUM

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Security). Supported versions that are affected are Java SE: 7u241, 8u231, 11.0.5 and 13.0.1; Java SE Embedded: 8u231. Difficult to exploit vulnerability allows unauthenticated attacker with network access via Kerberos to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets (in Java SE 8), that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.0 Base Score 3.7 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.7 LOW CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N 2.2 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
redhat enterprise_linux_workstation 6.0
opensuse leap 15.1
canonical ubuntu_linux 19.10
netapp oncommand_workflow_automation -
netapp e-series_performance_analyzer -
oracle jre 1.7.0
redhat enterprise_linux 8.0
oracle jre 1.8.0
redhat enterprise_linux_eus 7.7
netapp santricity_unified_manager -
oracle openjdk 11
redhat enterprise_linux_tus 7.7
oracle openjdk 13.0.1
redhat enterprise_linux_desktop 6.0
oracle openjdk 11.0.4
debian debian_linux 8.0
oracle jdk 1.8.0
oracle openjdk 8
oracle openjdk 11.0.2
oracle openjdk 11.0.5
mcafee epolicy_orchestrator 5.10.0
netapp e-series_santricity_os_controller *
oracle openjdk 7
canonical ubuntu_linux 16.04
debian debian_linux 9.0
oracle jdk 1.7.0
oracle jdk 13.0.1
redhat enterprise_linux_server 6.0
debian debian_linux 10.0
oracle openjdk 11.0.1
redhat enterprise_linux_eus 8.1
canonical ubuntu_linux 18.04
redhat enterprise_linux_server_aus 7.7
oracle jre 11.0.5
netapp e-series_santricity_web_services -
redhat enterprise_linux_server 7.0
oracle jre 13.0.1
netapp e-series_santricity_storage_manager -
redhat enterprise_linux_desktop 7.0
netapp steelstore_cloud_integrated_storage -
oracle openjdk 11.0.3
netapp active_iq_unified_manager *
netapp e-series_santricity_management -
netapp oncommand_insight -
mcafee epolicy_orchestrator 5.9.0
oracle jdk 11.0.5
mcafee epolicy_orchestrator 5.9.1
redhat enterprise_linux_workstation 7.0
oracle openjdk 13
CVE-2020-2593 MEDIUM

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Networking). Supported versions that are affected are Java SE: 7u241, 8u231, 11.0.5 and 13.0.1; Java SE Embedded: 8u231. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized update, insert or delete access to some of Java SE, Java SE Embedded accessible data as well as unauthorized read access to a subset of Java SE, Java SE Embedded accessible data. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets (in Java SE 8), that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.0 Base Score 4.8 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.8 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N 2.2 2.5

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
redhat enterprise_linux_workstation 6.0
opensuse leap 15.1
canonical ubuntu_linux 19.10
netapp oncommand_workflow_automation -
netapp e-series_performance_analyzer -
oracle jre 1.7.0
redhat enterprise_linux 8.0
oracle jre 1.8.0
redhat enterprise_linux_eus 7.7
netapp santricity_unified_manager -
oracle openjdk 11
oracle openjdk 13.0.1
redhat enterprise_linux_desktop 6.0
oracle openjdk 11.0.4
debian debian_linux 8.0
redhat enterprise_linux_server_tus 7.7
oracle jdk 1.8.0
oracle openjdk 8
oracle openjdk 11.0.2
oracle openjdk 11.0.5
mcafee epolicy_orchestrator 5.10.0
netapp e-series_santricity_os_controller *
oracle openjdk 7
canonical ubuntu_linux 16.04
debian debian_linux 9.0
oracle jdk 1.7.0
oracle jdk 13.0.1
redhat enterprise_linux_server 6.0
debian debian_linux 10.0
oracle openjdk 11.0.1
redhat enterprise_linux_eus 8.1
canonical ubuntu_linux 18.04
redhat enterprise_linux_server_aus 7.7
oracle jre 11.0.5
netapp e-series_santricity_web_services -
redhat enterprise_linux_server 7.0
oracle jre 13.0.1
netapp e-series_santricity_storage_manager -
redhat enterprise_linux_desktop 7.0
netapp steelstore_cloud_integrated_storage -
oracle openjdk 11.0.3
netapp active_iq_unified_manager *
netapp e-series_santricity_management -
netapp oncommand_insight -
mcafee epolicy_orchestrator 5.9.0
oracle jdk 11.0.5
mcafee epolicy_orchestrator 5.9.1
redhat enterprise_linux_workstation 7.0
oracle openjdk 13
CVE-2020-2604 MEDIUM

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Serialization). Supported versions that are affected are Java SE: 7u241, 8u231, 11.0.5 and 13.0.1; Java SE Embedded: 8u231. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in takeover of Java SE, Java SE Embedded. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets (in Java SE 8), that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS v3.0 Base Score 8.1 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.1 HIGH CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H 2.2 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-502,

Products Affected

Vendor Product Version
redhat enterprise_linux_workstation 6.0
opensuse leap 15.1
oracle graalvm 19.3.0.2
canonical ubuntu_linux 19.10
netapp e-series_santricity_web_services_proxy -
netapp oncommand_workflow_automation -
netapp e-series_performance_analyzer -
canonical ubuntu_linux 16.04
redhat enterprise_linux 8.0
oracle jre 1.8.0
debian debian_linux 9.0
oracle jdk 1.7.0
oracle jdk 13.0.1
redhat enterprise_linux_eus 7.7
netapp santricity_unified_manager -
redhat enterprise_linux_server 6.0
redhat enterprise_linux_eus 8.1
canonical ubuntu_linux 18.04
redhat enterprise_linux_server_aus 7.7
oracle commerce_guided_search 11.3.2
oracle openjdk *
redhat enterprise_linux_desktop 6.0
redhat enterprise_linux_server 7.0
netapp e-series_santricity_storage_manager -
redhat enterprise_linux_desktop 7.0
netapp steelstore_cloud_integrated_storage -
debian debian_linux 8.0
netapp e-series_santricity_management_plug-ins -
netapp active_iq_unified_manager *
redhat enterprise_linux_server_tus 7.7
oracle commerce_experience_manager 11.3.2
oracle jdk 1.8.0
netapp oncommand_insight -
mcafee epolicy_orchestrator 5.9.0
oracle jdk 11.0.5
oracle openjdk 8
mcafee epolicy_orchestrator 5.9.1
redhat enterprise_linux_workstation 7.0
mcafee epolicy_orchestrator 5.10.0
netapp e-series_santricity_os_controller *
oracle openjdk 7
CVE-2020-2654 MEDIUM

Vulnerability in the Java SE product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u241, 8u231, 11.0.5 and 13.0.1. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE. Note: This vulnerability can only be exploited by supplying data to APIs in the specified Component without using Untrusted Java Web Start applications or Untrusted Java applets, such as through a web service. CVSS 3.0 Base Score 3.7 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.7 LOW CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L 2.2 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
redhat enterprise_linux_workstation 6.0
opensuse leap 15.1
canonical ubuntu_linux 19.10
netapp e-series_santricity_web_services_proxy -
netapp oncommand_workflow_automation -
netapp e-series_performance_analyzer -
oracle jre 1.7.0
redhat enterprise_linux 8.0
oracle jre 1.8.0
redhat enterprise_linux_eus 7.7
netapp santricity_unified_manager -
oracle openjdk 11
oracle openjdk 13.0.1
redhat enterprise_linux 6.0
redhat enterprise_linux 7.0
redhat enterprise_linux_desktop 6.0
oracle openjdk 11.0.4
debian debian_linux 8.0
netapp e-series_santricity_management_plug-ins -
redhat enterprise_linux_server_tus 7.7
oracle jdk 1.8.0
oracle openjdk 8
oracle openjdk 11.0.2
oracle openjdk 11.0.5
mcafee epolicy_orchestrator 5.10.0
netapp e-series_santricity_os_controller *
oracle openjdk 7
canonical ubuntu_linux 16.04
debian debian_linux 9.0
oracle jdk 1.7.0
oracle jdk 13.0.1
debian debian_linux 10.0
oracle openjdk 11.0.1
redhat enterprise_linux_eus 8.1
canonical ubuntu_linux 18.04
redhat enterprise_linux_server_aus 7.7
oracle jre 11.0.5
oracle jre 13.0.1
netapp e-series_santricity_storage_manager -
redhat enterprise_linux_desktop 7.0
netapp steelstore_cloud_integrated_storage -
oracle openjdk 11.0.3
netapp active_iq_unified_manager *
netapp oncommand_insight -
mcafee epolicy_orchestrator 5.9.0
oracle jdk 11.0.5
mcafee epolicy_orchestrator 5.9.1
redhat enterprise_linux_workstation 7.0
oracle openjdk 13
CVE-2020-2754 MEDIUM

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Scripting). Supported versions that are affected are Java SE: 8u241, 11.0.6 and 14; Java SE Embedded: 8u241. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded. Note: Applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 3.7 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.7 LOW CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L 2.2 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
fedoraproject fedora 32
opensuse leap 15.1
opensuse leap 15.2
canonical ubuntu_linux 19.10
oracle jre 14.0.0
netapp snapmanager -
netapp storagegrid *
canonical ubuntu_linux 16.04
fedoraproject fedora 30
oracle jre 1.8.0
debian debian_linux 9.0
netapp storagegrid -
oracle jre 11.0.6
debian debian_linux 10.0
canonical ubuntu_linux 18.04
oracle openjdk *
fedoraproject fedora 31
oracle openjdk 14
oracle jdk 11.0.6
netapp active_iq_unified_manager *
oracle jdk 1.8.0
oracle jdk 14.0.0
mcafee epolicy_orchestrator 5.9.0
oracle openjdk 8
mcafee epolicy_orchestrator 5.9.1
mcafee epolicy_orchestrator 5.10.0
netapp e-series_santricity_os_controller *
oracle openjdk 7
CVE-2020-2755 MEDIUM

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Scripting). Supported versions that are affected are Java SE: 8u241, 11.0.6 and 14; Java SE Embedded: 8u241. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded. Note: Applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 3.7 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.7 LOW CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L 2.2 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
fedoraproject fedora 32
opensuse leap 15.1
opensuse leap 15.2
canonical ubuntu_linux 19.10
oracle jre 14.0.0
netapp cloud_backup -
netapp snapmanager -
netapp e-series_performance_analyzer -
netapp storagegrid *
canonical ubuntu_linux 16.04
fedoraproject fedora 30
oracle jre 1.8.0
debian debian_linux 9.0
netapp storagegrid -
netapp santricity_unified_manager -
oracle jre 11.0.6
debian debian_linux 10.0
canonical ubuntu_linux 18.04
oracle openjdk *
fedoraproject fedora 31
netapp 7-mode_transition_tool -
netapp cloud_secure_agent -
netapp e-series_santricity_web_services -
oracle openjdk 14
netapp steelstore_cloud_integrated_storage -
oracle jdk 11.0.6
netapp active_iq_unified_manager *
oracle jdk 1.8.0
oracle jdk 14.0.0
netapp oncommand_insight -
mcafee epolicy_orchestrator 5.9.0
oracle openjdk 8
mcafee epolicy_orchestrator 5.9.1
mcafee epolicy_orchestrator 5.10.0
netapp e-series_santricity_os_controller *
oracle openjdk 7
CVE-2020-2756 MEDIUM

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Serialization). Supported versions that are affected are Java SE: 7u251, 8u241, 11.0.6 and 14; Java SE Embedded: 8u241. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded. Note: Applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 3.7 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.7 LOW CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L 2.2 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-502,CWE-755,

Products Affected

Vendor Product Version
fedoraproject fedora 32
opensuse leap 15.1
opensuse leap 15.2
canonical ubuntu_linux 19.10
oracle jre 14.0.0
netapp cloud_backup -
netapp snapmanager -
netapp e-series_performance_analyzer -
netapp storagegrid *
oracle jre 1.7.0
canonical ubuntu_linux 16.04
fedoraproject fedora 30
oracle jre 1.8.0
debian debian_linux 9.0
oracle jdk 1.7.0
netapp storagegrid -
netapp santricity_unified_manager -
oracle jre 11.0.6
debian debian_linux 10.0
canonical ubuntu_linux 18.04
oracle openjdk *
fedoraproject fedora 31
netapp 7-mode_transition_tool -
netapp cloud_secure_agent -
netapp e-series_santricity_web_services -
oracle openjdk 14
netapp steelstore_cloud_integrated_storage -
debian debian_linux 8.0
oracle jdk 11.0.6
netapp active_iq_unified_manager *
mcafee epolicy_orchestrator *
oracle jdk 1.8.0
oracle jdk 14.0.0
netapp oncommand_insight -
oracle openjdk 8
mcafee epolicy_orchestrator 5.10.0
netapp e-series_santricity_os_controller *
oracle openjdk 7
CVE-2020-2757 MEDIUM

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Serialization). Supported versions that are affected are Java SE: 7u251, 8u241, 11.0.6 and 14; Java SE Embedded: 8u241. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded. Note: Applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 3.7 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.7 LOW CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L 2.2 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-502,CWE-755,

Products Affected

Vendor Product Version
fedoraproject fedora 32
opensuse leap 15.1
opensuse leap 15.2
canonical ubuntu_linux 19.10
oracle jre 14.0.0
netapp cloud_backup -
netapp snapmanager -
netapp oncommand_workflow_automation -
netapp e-series_performance_analyzer -
netapp storagegrid *
oracle jre 1.7.0
canonical ubuntu_linux 16.04
fedoraproject fedora 30
oracle jre 1.8.0
debian debian_linux 9.0
oracle jdk 1.7.0
netapp storagegrid -
netapp santricity_unified_manager -
oracle jre 11.0.6
debian debian_linux 10.0
canonical ubuntu_linux 18.04
oracle openjdk *
fedoraproject fedora 31
netapp 7-mode_transition_tool -
netapp cloud_secure_agent -
netapp e-series_santricity_web_services -
oracle openjdk 14
netapp steelstore_cloud_integrated_storage -
debian debian_linux 8.0
oracle jdk 11.0.6
netapp active_iq_unified_manager *
mcafee epolicy_orchestrator *
oracle jdk 1.8.0
oracle jdk 14.0.0
netapp oncommand_insight -
oracle openjdk 8
mcafee epolicy_orchestrator 5.10.0
netapp e-series_santricity_os_controller *
oracle openjdk 7
CVE-2020-2773 MEDIUM

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Security). Supported versions that are affected are Java SE: 7u251, 8u241, 11.0.6 and 14; Java SE Embedded: 8u241. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded. Note: Applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 3.7 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.7 LOW CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L 2.2 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
fedoraproject fedora 32
opensuse leap 15.1
opensuse leap 15.2
canonical ubuntu_linux 19.10
oracle jre 14.0.0
netapp cloud_backup -
netapp snapmanager -
netapp oncommand_workflow_automation -
netapp e-series_performance_analyzer -
netapp storagegrid *
oracle jre 1.7.0
canonical ubuntu_linux 16.04
fedoraproject fedora 30
oracle jre 1.8.0
debian debian_linux 9.0
oracle jdk 1.7.0
netapp storagegrid -
netapp santricity_unified_manager -
oracle jre 11.0.6
debian debian_linux 10.0
canonical ubuntu_linux 18.04
oracle openjdk *
fedoraproject fedora 31
netapp 7-mode_transition_tool -
netapp cloud_secure_agent -
netapp e-series_santricity_web_services -
oracle openjdk 14
netapp steelstore_cloud_integrated_storage -
debian debian_linux 8.0
oracle jdk 11.0.6
netapp active_iq_unified_manager *
oracle jdk 1.8.0
oracle jdk 14.0.0
netapp oncommand_insight -
mcafee epolicy_orchestrator 5.9.0
oracle openjdk 8
mcafee epolicy_orchestrator 5.9.1
mcafee epolicy_orchestrator 5.10.0
netapp e-series_santricity_os_controller *
oracle openjdk 7
CVE-2020-2781 MEDIUM

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: JSSE). Supported versions that are affected are Java SE: 7u251, 8u241, 11.0.6 and 14; Java SE Embedded: 8u241. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded. Note: Applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
fedoraproject fedora 32
opensuse leap 15.1
opensuse leap 15.2
canonical ubuntu_linux 19.10
oracle jre 14.0.0
netapp cloud_backup -
netapp snapmanager -
netapp oncommand_workflow_automation -
netapp e-series_performance_analyzer -
netapp storagegrid *
oracle jre 1.7.0
canonical ubuntu_linux 16.04
fedoraproject fedora 30
oracle jre 1.8.0
debian debian_linux 9.0
oracle jdk 1.7.0
netapp storagegrid -
mcafee threat_intelligence_exchange_server 3.0.0
netapp santricity_unified_manager -
mcafee threat_intelligence_exchange_server 2.2.0
oracle jre 11.0.6
debian debian_linux 10.0
mcafee threat_intelligence_exchange_server 2.3.0
canonical ubuntu_linux 18.04
oracle openjdk *
fedoraproject fedora 31
netapp 7-mode_transition_tool -
netapp cloud_secure_agent -
netapp e-series_santricity_web_services -
oracle openjdk 14
mcafee threat_intelligence_exchange_server 2.0.1
netapp steelstore_cloud_integrated_storage -
debian debian_linux 8.0
oracle jdk 11.0.6
mcafee threat_intelligence_exchange_server 2.1.1
netapp active_iq_unified_manager *
oracle jdk 1.8.0
oracle jdk 14.0.0
mcafee threat_intelligence_exchange_server 2.3.1
mcafee threat_intelligence_exchange_server 2.0.0
netapp oncommand_insight -
oracle openjdk 8
mcafee threat_intelligence_exchange_server 2.1.0
netapp e-series_santricity_os_controller *
oracle openjdk 7
CVE-2020-2830 MEDIUM

Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Concurrency). Supported versions that are affected are Java SE: 7u251, 8u241, 11.0.6 and 14; Java SE Embedded: 8u241. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE, Java SE Embedded. Note: Applies to client and server deployment of Java. This vulnerability can be exploited through sandboxed Java Web Start applications and sandboxed Java applets. It can also be exploited by supplying data to APIs in the specified Component without using sandboxed Java Web Start applications or sandboxed Java applets, such as through a web service. CVSS 3.0 Base Score 5.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
fedoraproject fedora 32
opensuse leap 15.1
opensuse leap 15.2
canonical ubuntu_linux 19.10
oracle jre 14.0.0
netapp cloud_backup -
netapp snapmanager -
netapp oncommand_workflow_automation -
netapp e-series_performance_analyzer -
netapp storagegrid *
oracle jre 1.7.0
canonical ubuntu_linux 16.04
fedoraproject fedora 30
oracle jre 1.8.0
oracle jdk 1.7.0
netapp storagegrid -
mcafee threat_intelligence_exchange_server 3.0.0
netapp santricity_unified_manager -
oracle jre 11.0.6
debian debian_linux 10.0
canonical ubuntu_linux 18.04
oracle openjdk *
fedoraproject fedora 31
netapp 7-mode_transition_tool -
netapp e-series_santricity_web_services -
oracle openjdk 14
netapp steelstore_cloud_integrated_storage -
debian debian_linux 8.0
oracle jdk 11.0.6
netapp active_iq_unified_manager *
oracle jdk 1.8.0
oracle jdk 14.0.0
mcafee threat_intelligence_exchange_server 2.3.1
netapp oncommand_insight -
oracle openjdk 8
netapp plug-in_for_symantec_netbackup -
mcafee threat_intelligence_exchange_server *
netapp e-series_santricity_os_controller *
oracle openjdk 7
CVE-2020-7250 MEDIUM

Symbolic link manipulation vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 February 2020 Update allows authenticated local user to potentially gain an escalation of privileges by pointing the link to files which the user which not normally have permission to alter via carefully creating symbolic links from the ENS log file directory.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 8.2 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H 1.5 6.0
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-59,CWE-59,

Products Affected

Vendor Product Version
mcafee endpoint_security 10.5.2
mcafee endpoint_security 10.5.5
mcafee endpoint_security 10.5.0
mcafee endpoint_security 10.6.0
mcafee endpoint_security 10.5.3
mcafee endpoint_security 10.5.4
mcafee endpoint_security 10.5.1
CVE-2020-7251 LOW

Improper access control vulnerability in Configuration Tool in McAfee Mcafee Endpoint Security (ENS) Prior to 10.6.1 February 2020 Update allows local users to disable security features via unauthorised use of the configuration tool from older versions of ENS.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 5.0 MEDIUM CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:H/I:L/A:N 0.8 4.2
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-358,CWE-863,

Products Affected

Vendor Product Version
mcafee endpoint_security *
CVE-2020-7252 LOW

Unquoted service executable path in DXL Broker in McAfee Data eXchange Layer (DXL) Framework 6.0.0 and earlier allows local users to cause a denial of service and malicious file execution via carefully crafted and named executable files.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 1.8 3.6
trellixpsirt@trellix.com 4.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:N/I:N/A:H 0.6 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-250,CWE-428,

Products Affected

Vendor Product Version
mcafee data_exchange_layer *
CVE-2020-7253 LOW

Improper access control vulnerability in masvc.exe in McAfee Agent (MA) prior to 5.6.4 allows local users with administrator privileges to disable self-protection via a McAfee supplied command-line utility.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.4 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N 0.8 3.6
trellixpsirt@trellix.com 5.7 MEDIUM CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:H/A:H 0.5 5.2

CVSS 2.0

Severity: LOW

Problem Type: CWE-284,CWE-20,

Products Affected

Vendor Product Version
mcafee agent *
CVE-2020-7254 MEDIUM

Privilege Escalation vulnerability in the command line interface in McAfee Advanced Threat Defense (ATD) 4.x prior to 4.8.2 allows local users to execute arbitrary code via improper access controls on the sudo command.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 7.7 HIGH CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:H 1.1 6.0
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,CWE-269,CWE-269,

Products Affected

Vendor Product Version
mcafee advanced_threat_defense *
CVE-2020-7255 LOW

Privilege escalation vulnerability in the administrative user interface in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 February 2020 Update allows local users to gain elevated privileges via ENS not checking user permissions when editing configuration in the ENS client interface. Administrators can lock the ENS client interface through ePO to prevent users being able to edit the configuration.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.4 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L 1.8 2.5
trellixpsirt@trellix.com 3.9 LOW CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:N/I:L/A:L 0.8 2.7

CVSS 2.0

Severity: LOW

Problem Type: CWE-264,CWE-269,

Products Affected

Vendor Product Version
mcafee endpoint_security 10.5.2
mcafee endpoint_security 10.5.5
mcafee endpoint_security 10.5.0
mcafee endpoint_security 10.6.0
mcafee endpoint_security 10.5.3
mcafee endpoint_security 10.5.4
mcafee endpoint_security 10.5.1
CVE-2020-7256 LOW

Cross site scripting vulnerability in McAfee Network Security Management (NSM) Prior to 9.1 update 6 Mar 2020 Update allows attackers to unspecified impact via unspecified vectors.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 4.8 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N 1.7 2.7
nvd@nist.gov 4.8 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N 1.7 2.7

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,CWE-79,

Products Affected

Vendor Product Version
mcafee network_security_manager *
CVE-2020-7257 LOW

Privilege escalation vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 February 2020 Update allows local users to cause the deletion and creation of files they would not normally have permission to through altering the target of symbolic links whilst an anti-virus scan was in progress. This is timing dependent.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 8.4 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:H 2.0 5.8
nvd@nist.gov 6.3 MEDIUM CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H 1.0 5.2

CVSS 2.0

Severity: LOW

Problem Type: CWE-264,CWE-269,

Products Affected

Vendor Product Version
mcafee endpoint_security 10.5.2
mcafee endpoint_security 10.5.5
mcafee endpoint_security 10.5.0
mcafee endpoint_security 10.6.0
mcafee endpoint_security 10.5.3
mcafee endpoint_security 10.5.4
mcafee endpoint_security 10.5.1
CVE-2020-7258 LOW

Cross site scripting vulnerability in McAfee Network Security Management (NSM) Prior to 9.1 update 6 Mar 2020 Update allows attackers to unspecified impact via unspecified vectors.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 4.8 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N 1.7 2.7
nvd@nist.gov 4.8 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N 1.7 2.7

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,CWE-79,

Products Affected

Vendor Product Version
mcafee network_security_manager *
CVE-2020-7259 MEDIUM

Exploitation of Privilege/Trust vulnerability in file in McAfee Endpoint Security (ENS) Prior to 10.7.0 February 2020 Update allows local users to bypass local security protection via a carefully crafted input file

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 6.6 MEDIUM CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:L/I:H/A:L 0.8 5.3
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,CWE-269,

Products Affected

Vendor Product Version
mcafee endpoint_security 10.5.2
mcafee endpoint_security 10.5.5
mcafee endpoint_security 10.5.0
mcafee endpoint_security 10.6.0
mcafee endpoint_security 10.5.3
mcafee endpoint_security 10.5.4
mcafee endpoint_security 10.5.1
CVE-2020-7260 MEDIUM

DLL Side Loading vulnerability in the installer for McAfee Application and Change Control (MACC) prior to 8.3 allows local users to execute arbitrary code via execution from a compromised folder.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9
trellixpsirt@trellix.com 7.3 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:H 1.8 5.5

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,CWE-426,

Products Affected

Vendor Product Version
mcafee application_and_change_control *
CVE-2020-7261 LOW

Buffer Overflow via Environment Variables vulnerability in AMSI component in McAfee Endpoint Security (ENS) Prior to 10.7.0 February 2020 Update allows local users to disable Endpoint Security via a carefully crafted user input.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 6.1 MEDIUM CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:L/A:N 0.8 4.7
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-119,CWE-120,

Products Affected

Vendor Product Version
mcafee endpoint_security 10.5.2
mcafee endpoint_security 10.5.5
mcafee endpoint_security 10.5.0
mcafee endpoint_security 10.6.0
mcafee endpoint_security 10.5.3
mcafee endpoint_security 10.5.4
mcafee endpoint_security 10.5.1
CVE-2020-7262 LOW

Improper Access Control vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.10.0 allows local users to view sensitive files via a carefully crafted HTTP request parameter.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6
trellixpsirt@trellix.com 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N 3.9 1.4

CVSS 2.0

Severity: LOW

Problem Type: CWE-200,CWE-200,

Products Affected

Vendor Product Version
mcafee advanced_threat_defense *
CVE-2020-7263 MEDIUM

Improper access control vulnerability in ESconfigTool.exe in McAfee Endpoint Security (ENS) for Windows all current versions allows local administrator to alter ENS configuration up to and including disabling all protection offered by ENS via insecurely implemented encryption of configuration for export and import.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 6.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H 0.6 5.9
nvd@nist.gov 6.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-264,CWE-732,

Products Affected

Vendor Product Version
mcafee endpoint_security 10.5.2
mcafee endpoint_security 10.5.5
mcafee endpoint_security 10.7.0
mcafee endpoint_security 10.5.0
mcafee endpoint_security 10.6.0
mcafee endpoint_security 10.5.3
mcafee endpoint_security 10.5.4
mcafee endpoint_security 10.6.1
mcafee endpoint_security 10.5.1
CVE-2020-7264 LOW

Privilege Escalation vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 Hotfix 199847 allows local users to delete files the user would otherwise not have access to via manipulating symbolic links to redirect a McAfee delete action to an unintended file. This is achieved through running a malicious script or program on the target machine.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 8.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H 2.0 6.0
nvd@nist.gov 8.4 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:H 2.0 5.8

CVSS 2.0

Severity: LOW

Problem Type: CWE-274,CWE-269,

Products Affected

Vendor Product Version
mcafee endpoint_security 10.7.0
mcafee endpoint_security 10.6.0
mcafee endpoint_security *
CVE-2020-7265 LOW

Privilege Escalation vulnerability in McAfee Endpoint Security (ENS) for Mac prior to 10.6.9 allows local users to delete files the user would otherwise not have access to via manipulating symbolic links to redirect a McAfee delete action to an unintended file. This is achieved through running a malicious script or program on the target machine.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.4 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:H 2.0 5.8
trellixpsirt@trellix.com 8.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H 2.0 6.0

CVSS 2.0

Severity: LOW

Problem Type: CWE-274,CWE-269,

Products Affected

Vendor Product Version
mcafee endpoint_security *
CVE-2020-7266 LOW

Privilege Escalation vulnerability in McAfee VirusScan Enterprise (VSE) for Windows prior to 8.8 Patch 14 Hotfix 116778 allows local users to delete files the user would otherwise not have access to via manipulating symbolic links to redirect a McAfee delete action to an unintended file. This is achieved through running a malicious script or program on the target machine.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 8.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H 2.0 6.0
nvd@nist.gov 8.4 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:H 2.0 5.8

CVSS 2.0

Severity: LOW

Problem Type: CWE-274,CWE-269,

Products Affected

Vendor Product Version
mcafee virusscan_enterprise *
CVE-2020-7267 LOW

Privilege Escalation vulnerability in McAfee VirusScan Enterprise (VSE) for Linux prior to 2.0.3 Hotfix 2635000 allows local users to delete files the user would otherwise not have access to via manipulating symbolic links to redirect a McAfee delete action to an unintended file. This is achieved through running a malicious script or program on the target machine.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.4 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:H 2.0 5.8
trellixpsirt@trellix.com 8.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H 2.0 6.0

CVSS 2.0

Severity: LOW

Problem Type: CWE-274,CWE-269,

Products Affected

Vendor Product Version
mcafee virusscan_enterprise 8.8
CVE-2020-7268 MEDIUM

Path Traversal vulnerability in McAfee McAfee Email Gateway (MEG) prior to 7.6.406 allows remote attackers to traverse the file system to access files or directories that are outside of the restricted directory via external input to construct a path name that should be within a restricted directory.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N 2.8 1.4
trellixpsirt@trellix.com 4.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N 2.8 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,CWE-22,

Products Affected

Vendor Product Version
mcafee email_gateway *
CVE-2020-7269 MEDIUM

Exposure of Sensitive Information in the web interface in McAfee Advanced Threat Defense (ATD) prior to 4.12.2 allows remote authenticated users to view sensitive unencrypted information via a carefully crafted HTTP request parameter. The risk is partially mitigated if your ATD instances are deployed as recommended with no direct access from the Internet to them.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 4.9 MEDIUM CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L 1.5 3.4
nvd@nist.gov 4.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N 2.8 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mcafee advanced_threat_defense *
CVE-2020-7270 MEDIUM

Exposure of Sensitive Information in the web interface in McAfee Advanced Threat Defense (ATD) prior to 4.12.2 allows remote authenticated users to view sensitive unencrypted information via a carefully crafted HTTP request parameter. The risk is partially mitigated if your ATD instances are deployed as recommended with no direct access from the Internet to them.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N 2.8 1.4
trellixpsirt@trellix.com 4.9 MEDIUM CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L 1.5 3.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mcafee advanced_threat_defense *
CVE-2020-7273 LOW

Accessing functionality not properly constrained by ACLs vulnerability in the autorun start-up protection in McAfee Endpoint Security (ENS) for Windows Prior to 10.7.0 April 2020 Update allows local users to delete or rename programs in the autorun key via manipulation of some parameters.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N 1.8 3.6
trellixpsirt@trellix.com 6.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:N/I:L/A:H 1.5 4.7

CVSS 2.0

Severity: LOW

Problem Type: CWE-269,CWE-269,

Products Affected

Vendor Product Version
mcafee endpoint_security 10.5.2
mcafee endpoint_security 10.5.5
mcafee endpoint_security 10.5.0
mcafee endpoint_security 10.6.0
mcafee endpoint_security 10.5.3
mcafee endpoint_security 10.5.4
mcafee endpoint_security 10.5.1
CVE-2020-7274 MEDIUM

Privilege escalation vulnerability in McTray.exe in McAfee Endpoint Security (ENS) for Windows Prior to 10.7.0 April 2020 Update allows local users to spawn unrelated processes with elevated privileges via the system administrator granting McTray.exe elevated privileges (by default it runs with the current user's privileges).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 6.6 MEDIUM CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:L/A:L 0.8 5.3
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-269,CWE-269,

Products Affected

Vendor Product Version
mcafee endpoint_security 10.5.2
mcafee endpoint_security 10.5.5
mcafee endpoint_security 10.5.0
mcafee endpoint_security 10.6.0
mcafee endpoint_security 10.5.3
mcafee endpoint_security 10.5.4
mcafee endpoint_security 10.5.1
CVE-2020-7275 MEDIUM

Accessing, modifying or executing executable files vulnerability in the uninstaller in McAfee Endpoint Security (ENS) for Windows Prior to 10.7.0 April 2020 Update allows local users to execute arbitrary code via a carefully crafted input file.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L 1.8 3.4
trellixpsirt@trellix.com 4.8 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L 1.3 3.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-428,CWE-428,

Products Affected

Vendor Product Version
mcafee endpoint_security 10.5.2
mcafee endpoint_security 10.5.5
mcafee endpoint_security 10.5.0
mcafee endpoint_security 10.6.0
mcafee endpoint_security 10.5.3
mcafee endpoint_security 10.5.4
mcafee endpoint_security 10.5.1
CVE-2020-7276 MEDIUM

Authentication bypass vulnerability in MfeUpgradeTool in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 April 2020 Update allows administrator users to access policy settings via running this tool.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.8 5.9
trellixpsirt@trellix.com 6.4 MEDIUM CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:L/I:H/A:L 0.6 5.3

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,CWE-287,

Products Affected

Vendor Product Version
mcafee endpoint_security 10.5.2
mcafee endpoint_security 10.5.5
mcafee endpoint_security 10.5.0
mcafee endpoint_security 10.6.0
mcafee endpoint_security 10.5.3
mcafee endpoint_security 10.5.4
mcafee endpoint_security 10.5.1
CVE-2020-7277 MEDIUM

Protection mechanism failure in all processes in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 April 2020 Update allows local users to stop certain McAfee ENS processes, reducing the protection offered.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 6.8 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:L 2.5 3.7
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L 1.8 3.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-693,NVD-CWE-Other,

Products Affected

Vendor Product Version
mcafee endpoint_security 10.5.2
mcafee endpoint_security 10.5.5
mcafee endpoint_security 10.5.0
mcafee endpoint_security 10.6.0
mcafee endpoint_security 10.5.3
mcafee endpoint_security 10.5.4
mcafee endpoint_security 10.5.1
CVE-2020-7278 MEDIUM

Exploiting incorrectly configured access control security levels vulnerability in ENS Firewall in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 April 2020 and 10.6.1 April 2020 updates allows remote attackers and local users to allow or block unauthorized traffic via pre-existing rules not being handled correctly when updating to the February 2020 updates.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 7.4 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:L 3.1 3.7
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-284,CWE-862,

Products Affected

Vendor Product Version
mcafee endpoint_security 10.5.2
mcafee endpoint_security 10.5.5
mcafee endpoint_security 10.5.0
mcafee endpoint_security 10.6.0
mcafee endpoint_security 10.5.3
mcafee endpoint_security 10.5.4
mcafee endpoint_security 10.5.1
CVE-2020-7279 MEDIUM

DLL Search Order Hijacking Vulnerability in the installer component of McAfee Host Intrusion Prevention System (Host IPS) for Windows prior to 8.0.0 Patch 15 Update allows attackers with local access to execute arbitrary code via execution from a compromised folder.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9
trellixpsirt@trellix.com 4.6 MEDIUM CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:L/I:H/A:N 0.3 4.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-426,CWE-426,

Products Affected

Vendor Product Version
mcafee host_intrusion_prevention 8.0.0
CVE-2020-7280 MEDIUM

Privilege Escalation vulnerability during daily DAT updates when using McAfee Virus Scan Enterprise (VSE) prior to 8.8 Patch 15 allows local users to cause the deletion and creation of files they would not normally have permission to through altering the target of symbolic links. This is timing dependent.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-269,CWE-269,

Products Affected

Vendor Product Version
mcafee virusscan_enterprise 8.8
CVE-2020-7281 LOW

Privilege Escalation vulnerability in McAfee Total Protection (MTP) prior to 16.0.R26 allows local users to delete files the user would otherwise not have access to via manipulating symbolic links to redirect a McAfee delete action to an unintended file. This is achieved through running a malicious script or program on the target machine.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 7.5 HIGH CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:H/A:H 1.1 5.8
nvd@nist.gov 6.3 MEDIUM CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H 1.0 5.2

CVSS 2.0

Severity: LOW

Problem Type: CWE-269,CWE-269,

Products Affected

Vendor Product Version
mcafee total_protection *
CVE-2020-7282 LOW

Privilege Escalation vulnerability in McAfee Total Protection (MTP) before 16.0.R26 allows local users to delete files the user would otherwise not have access to via manipulating symbolic links to redirect a McAfee delete action to an unintended file. This is achieved through running a malicious script or program on the target machine.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 7.5 HIGH CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:H/A:H 1.1 5.8
nvd@nist.gov 6.3 MEDIUM CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:H 1.0 5.2

CVSS 2.0

Severity: LOW

Problem Type: CWE-59,CWE-59,

Products Affected

Vendor Product Version
mcafee total_protection *
CVE-2020-7283 MEDIUM

Privilege Escalation vulnerability in McAfee Total Protection (MTP) before 16.0.R26 allows local users to create and edit files via symbolic link manipulation in a location they would otherwise not have access to. This is achieved through running a malicious script or program on the target machine.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H 2.0 6.0
trellixpsirt@trellix.com 7.5 HIGH CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:H/A:H 1.1 5.8

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-274,CWE-269,

Products Affected

Vendor Product Version
mcafee total_protection *
CVE-2020-7284 HIGH

Exposure of Sensitive Information in McAfee Network Security Management (NSM) prior to 10.1.7.7 allows local users to gain unauthorised access to the root account via execution of carefully crafted commands from the restricted command line interface (CLI).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 8.6 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H 1.8 6.0
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-200,CWE-200,

Products Affected

Vendor Product Version
mcafee network_security_management *
CVE-2020-7285 MEDIUM

Privilege Escalation vulnerability in McAfee MVISION Endpoint prior to 20.5.0.94 allows a malicious script or program to perform functions that the local executing user has not been granted access to.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 7.8 HIGH CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H 1.1 6.0
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-274,CWE-269,

Products Affected

Vendor Product Version
mcafee mvision_endpoint *
CVE-2020-7286 MEDIUM

Privilege Escalation vulnerability in McAfee Exploit Detection and Response (EDR) for Windows prior to 3.1.0 Hotfix 1 allows a malicious script or program to perform functions that the local executing user has not been granted access to.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9
trellixpsirt@trellix.com 7.8 HIGH CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H 1.1 6.0

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-274,CWE-269,

Products Affected

Vendor Product Version
mcafee endpoint_detection_and_response *
CVE-2020-7287 MEDIUM

Privilege Escalation vulnerability in McAfee Exploit Detection and Response (EDR) for Linux prior to 3.1.0 Hotfix 1 allows a malicious script or program to perform functions that the local executing user has not been granted access to.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9
trellixpsirt@trellix.com 7.8 HIGH CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H 1.1 6.0

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-274,CWE-269,

Products Affected

Vendor Product Version
mcafee endpoint_detection_and_response 3.1.0
mcafee endpoint_detection_and_response *
CVE-2020-7288 MEDIUM

Privilege Escalation vulnerability in McAfee Exploit Detection and Response (EDR) for Mac prior to 3.1.0 Hotfix 1 allows a malicious script or program to perform functions that the local executing user has not been granted access to.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9
trellixpsirt@trellix.com 7.8 HIGH CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H 1.1 6.0

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-274,CWE-269,

Products Affected

Vendor Product Version
mcafee endpoint_detection_and_response 3.1.0
mcafee endpoint_detection_and_response *
CVE-2020-7289 MEDIUM

Privilege Escalation vulnerability in McAfee Active Response (MAR) for Windows prior to 2.4.3 Hotfix 1 allows a malicious script or program to perform functions that the local executing user has not been granted access to.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9
trellixpsirt@trellix.com 7.8 HIGH CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H 1.1 6.0

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-274,CWE-269,

Products Affected

Vendor Product Version
mcafee active_response *
mcafee active_response 2.4.3
CVE-2020-7290 MEDIUM

Privilege Escalation vulnerability in McAfee Active Response (MAR) for Linux prior to 2.4.3 Hotfix 1 allows a malicious script or program to perform functions that the local executing user has not been granted access to.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9
trellixpsirt@trellix.com 7.8 HIGH CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H 1.1 6.0

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-274,CWE-269,

Products Affected

Vendor Product Version
mcafee active_response *
mcafee active_response 2.4.3
CVE-2020-7291 MEDIUM

Privilege Escalation vulnerability in McAfee Active Response (MAR) for Mac prior to 2.4.3 Hotfix 1 allows a malicious script or program to perform functions that the local executing user has not been granted access to.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 7.8 HIGH CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H 1.1 6.0
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-274,CWE-269,

Products Affected

Vendor Product Version
mcafee active_response *
mcafee active_response 2.4.3
CVE-2020-7292 MEDIUM

Inappropriate Encoding for output context vulnerability in McAfee Web Gateway (MWG) prior to 9.2.1 allows a remote attacker to cause MWG to return an ambiguous redirect response via getting a user to click on a malicious URL.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 4.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N 2.8 1.4
nvd@nist.gov 4.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N 2.8 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-838,CWE-838,

Products Affected

Vendor Product Version
mcafee web_gateway *
CVE-2020-7293 HIGH

Privilege Escalation vulnerability in McAfee Web Gateway (MWG) prior to 9.2.1 allows authenticated user interface user with low permissions to change the system's root password via improper access controls in the user interface.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.0 CRITICAL CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H 2.3 6.0
trellixpsirt@trellix.com 9.0 CRITICAL CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H 2.3 6.0

CVSS 2.0

Severity: HIGH

Problem Type: CWE-287,CWE-287,

Products Affected

Vendor Product Version
mcafee web_gateway *
CVE-2020-7294 MEDIUM

Privilege Escalation vulnerability in McAfee Web Gateway (MWG) prior to 9.2.1 allows authenticated user interface user to delete or download protected files via improper access controls in the REST interface.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 4.6 MEDIUM CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N 2.1 2.5
nvd@nist.gov 4.6 MEDIUM CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N 2.1 2.5

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,CWE-287,

Products Affected

Vendor Product Version
mcafee web_gateway *
CVE-2020-7295 MEDIUM

Privilege Escalation vulnerability in McAfee Web Gateway (MWG) prior to 9.2.1 allows authenticated user interface user to delete or download protected log data via improper access controls in the user interface.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 3.5 LOW CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N 2.1 1.4
nvd@nist.gov 4.6 MEDIUM CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N 2.1 2.5

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,CWE-287,

Products Affected

Vendor Product Version
mcafee web_gateway *
CVE-2020-7296 LOW

Privilege Escalation vulnerability in McAfee Web Gateway (MWG) prior to 9.2.1 allows authenticated user interface user to access protected configuration files via improper access control in the user interface.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.7 MEDIUM CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 2.1 3.6
trellixpsirt@trellix.com 5.7 MEDIUM CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 2.1 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-287,CWE-287,

Products Affected

Vendor Product Version
mcafee web_gateway *
CVE-2020-7297 LOW

Privilege Escalation vulnerability in McAfee Web Gateway (MWG) prior to 9.2.1 allows authenticated user interface user to access protected dashboard data via improper access control in the user interface.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 5.7 MEDIUM CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 2.1 3.6
nvd@nist.gov 5.7 MEDIUM CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 2.1 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-287,CWE-287,

Products Affected

Vendor Product Version
mcafee web_gateway *
CVE-2020-7298 LOW

Unexpected behavior violation in McAfee Total Protection (MTP) prior to 16.0.R26 allows local users to turn off real time scanning via a specially crafted object making a specific function call.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.4 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:H 2.0 5.8
trellixpsirt@trellix.com 7.5 HIGH CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:H/A:H 1.1 5.8

CVSS 2.0

Severity: LOW

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mcafee total_protection *
CVE-2020-7299 LOW

Cleartext Storage of Sensitive Information in Memory vulnerability in Microsoft Windows client in McAfee True Key (TK) prior to 6.2.109.2 allows a local user logged in with administrative privileges to access to another user’s passwords on the same machine via triggering a process dump in specific situations.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 5.0 MEDIUM CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:N/A:N 0.6 4.0
nvd@nist.gov 4.1 MEDIUM CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N 0.5 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-522,CWE-522,

Products Affected

Vendor Product Version
mcafee true_key *
CVE-2020-7300 MEDIUM

Improper Authorization vulnerability in McAfee Data Loss Prevention (DLP) ePO extension prior to 11.5.3 allows authenticated remote attackers to change the configuration when logged in with view only privileges via carefully constructed HTTP post messages.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L 2.8 3.4
trellixpsirt@trellix.com 4.6 MEDIUM CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L 2.1 2.5

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-863,CWE-863,

Products Affected

Vendor Product Version
mcafee data_loss_prevention *
CVE-2020-7301 LOW

Cross Site scripting vulnerability in McAfee Data Loss Prevention (DLP) ePO extension prior to 11.5.3 allows authenticated attackers to trigger alerts via the file upload tab in the DLP case management section.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 4.1 MEDIUM CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N 1.5 2.5
nvd@nist.gov 4.6 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N 2.1 2.5

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,CWE-79,

Products Affected

Vendor Product Version
mcafee data_loss_prevention *
CVE-2020-7302 MEDIUM

Unrestricted Upload of File with Dangerous Type in McAfee Data Loss Prevention (DLP) ePO extension prior to 11.5.3 allows authenticated attackers to upload malicious files to the DLP case management section via lack of sanity checking.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:L 3.1 2.7
trellixpsirt@trellix.com 5.4 MEDIUM CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:N/I:L/A:L 2.3 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-434,CWE-434,

Products Affected

Vendor Product Version
mcafee data_loss_prevention *
CVE-2020-7303 LOW

Cross Site scripting vulnerability in McAfee Data Loss Prevention (DLP) ePO extension prior to 11.5.3 allows authenticated remote user to trigger scripts to run in a user's browser via adding a new label.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 4.1 MEDIUM CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N 1.5 2.5
nvd@nist.gov 4.1 MEDIUM CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:N 1.5 2.5

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,CWE-79,

Products Affected

Vendor Product Version
mcafee data_loss_prevention *
CVE-2020-7304 MEDIUM

Cross site request forgery vulnerability in McAfee Data Loss Prevention (DLP) ePO extension prior to 11.5.3 allows authenticated remote attacker to embed a CRSF script via adding a new label.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.6 HIGH CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L 2.1 5.5
trellixpsirt@trellix.com 7.6 HIGH CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L 2.1 5.5

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,CWE-352,

Products Affected

Vendor Product Version
mcafee data_loss_prevention *
CVE-2020-7305 MEDIUM

Privilege escalation vulnerability in McAfee Data Loss Prevention (DLP) ePO extension prior to 11.5.3 allows a low privileged remote attacker to create new rule sets via incorrect validation of user credentials.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 6.7 MEDIUM CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N 1.5 5.2
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-269,CWE-269,

Products Affected

Vendor Product Version
mcafee data_loss_prevention *
CVE-2020-7306 LOW

Unprotected Storage of Credentials vulnerability in McAfee Data Loss Prevention (DLP) for Mac prior to 11.5.2 allows local users to gain access to the ADRMS username and password via unprotected log files containing plain text

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 5.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N 2.0 2.7
nvd@nist.gov 5.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N 2.0 2.7

CVSS 2.0

Severity: LOW

Problem Type: CWE-522,CWE-522,

Products Affected

Vendor Product Version
mcafee data_loss_prevention *
CVE-2020-7307 LOW

Unprotected Storage of Credentials vulnerability in McAfee Data Loss Prevention (DLP) for Mac prior to 11.5.2 allows local users to gain access to the RiskDB username and password via unprotected log files containing plain text credentials.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 5.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N 2.0 2.7
nvd@nist.gov 5.2 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N 2.0 2.7

CVSS 2.0

Severity: LOW

Problem Type: CWE-522,CWE-522,

Products Affected

Vendor Product Version
mcafee data_loss_prevention *
CVE-2020-7308 MEDIUM

Cleartext Transmission of Sensitive Information between McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 February 2021 Update and McAfee Global Threat Intelligence (GTI) servers using DNS allows a remote attacker to view the requests from ENS and responses from GTI over DNS. By gaining control of an intermediate DNS server or altering the network DNS configuration, it is possible for an attacker to intercept requests and send their own responses.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N 3.9 2.5
trellixpsirt@trellix.com 4.8 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N 2.2 2.5

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-319,CWE-319,

Products Affected

Vendor Product Version
mcafee endpoint_security 10.7.0
mcafee endpoint_security *
mcafee endpoint_security 10.6.1
CVE-2020-7309 LOW

Cross Site Scripting vulnerability in ePO extension in McAfee Application Control (MAC) prior to 8.3.1 allows administrators to inject arbitrary web script or HTML via specially crafted input in the policy discovery section.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.8 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N 1.7 2.7
trellixpsirt@trellix.com 3.9 LOW CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:L 0.5 3.4

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,CWE-79,

Products Affected

Vendor Product Version
mcafee application_and_change_control *
CVE-2020-7310 LOW

Privilege Escalation vulnerability in the installer in McAfee McAfee Total Protection (MTP) trial prior to 4.0.161.1 allows local users to change files that are part of write protection rules via manipulating symbolic links to redirect a McAfee file operations to an unintended file.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 6.9 MEDIUM CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:N/I:H/A:H 0.6 5.8
nvd@nist.gov 6.9 MEDIUM CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:N/I:H/A:H 0.6 5.8

CVSS 2.0

Severity: LOW

Problem Type: CWE-269,CWE-269,

Products Affected

Vendor Product Version
mcafee total_protection *
CVE-2020-7311 MEDIUM

Privilege Escalation vulnerability in the installer in McAfee Agent (MA) for Windows prior to 5.6.6 allows local users to assume SYSTEM rights during the installation of MA via manipulation of log files.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 7.8 HIGH CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H 1.1 6.0
nvd@nist.gov 7.0 HIGH CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H 1.0 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-269,CWE-269,

Products Affected

Vendor Product Version
mcafee mcafee_agent *
CVE-2020-7312 MEDIUM

DLL Search Order Hijacking Vulnerability in the installer in McAfee Agent (MA) for Windows prior to 5.6.6 allows local users to execute arbitrary code and escalate privileges via execution from a compromised folder.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9
trellixpsirt@trellix.com 7.8 HIGH CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H 1.1 6.0

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-427,CWE-427,

Products Affected

Vendor Product Version
mcafee mcafee_agent *
CVE-2020-7314 HIGH

Privilege Escalation Vulnerability in the installer in McAfee Data Exchange Layer (DXL) Client for Mac shipped with McAfee Agent (MA) for Mac prior to MA 5.6.6 allows local users to run commands as root via incorrectly applied permissions on temporary files.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9
trellixpsirt@trellix.com 8.2 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H 1.5 6.0

CVSS 2.0

Severity: HIGH

Problem Type: CWE-732,CWE-732,

Products Affected

Vendor Product Version
mcafee mcafee_agent *
CVE-2020-7315 MEDIUM

DLL Injection Vulnerability in McAfee Agent (MA) for Windows prior to 5.6.6 allows local users to execute arbitrary code via careful placement of a malicious DLL.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 6.0 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H 0.8 5.2
nvd@nist.gov 6.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-426,CWE-426,

Products Affected

Vendor Product Version
mcafee mcafee_agent *
CVE-2020-7316 MEDIUM

Unquoted service path vulnerability in McAfee File and Removable Media Protection (FRP) prior to 5.3.0 allows local users to execute arbitrary code, with higher privileges, via execution and from a compromised folder. This issue may result in files not being encrypted when a policy is triggered.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 6.6 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H 1.8 4.7
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-428,CWE-428,

Products Affected

Vendor Product Version
mcafee file_and_removable_media_protection *
CVE-2020-7317 LOW

Cross-Site Scripting vulnerability in McAfee ePolicy Orchistrator (ePO) prior to 5.10.9 Update 9 allows administrators to inject arbitrary web script or HTML via parameter values for "syncPointList" not being correctly sanitsed.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 4.6 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N 2.1 2.5
nvd@nist.gov 4.3 MEDIUM CVSS:3.1/AV:A/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N 1.2 2.7

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,CWE-79,

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator *
CVE-2020-7318 LOW

Cross-Site Scripting vulnerability in McAfee ePolicy Orchestrator (ePO) prior to 5.10.9 Update 9 allows administrators to inject arbitrary web script or HTML via multiple parameters where the administrator's entries were not correctly sanitized.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.3 MEDIUM CVSS:3.1/AV:A/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N 1.2 2.7
trellixpsirt@trellix.com 4.6 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N 2.1 2.5

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,CWE-79,

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator *
CVE-2020-7319 MEDIUM

Improper Access Control vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 September 2020 Update allows local users to access files which the user otherwise would not have access to via manipulating symbolic links to redirect McAfee file operations to an unintended file.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H 2.0 6.0
trellixpsirt@trellix.com 8.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H 2.0 6.0

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-59,CWE-59,

Products Affected

Vendor Product Version
mcafee endpoint_security *
CVE-2020-7320 LOW

Protection Mechanism Failure vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 September 2020 Update allows local administrator to temporarily reduce the detection capability allowing otherwise detected malware to run via stopping certain Microsoft services.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 6.7 MEDIUM CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:H/A:L 0.8 5.3
nvd@nist.gov 7.3 HIGH CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:H/A:L 1.5 5.3

CVSS 2.0

Severity: LOW

Problem Type: CWE-693,NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mcafee endpoint_security *
CVE-2020-7322 LOW

Information Disclosure Vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 September 2020 Update allows local users to gain access to sensitive information via incorrectly logging of sensitive information in debug logs.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.7 MEDIUM CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:L/I:L/A:L 0.6 3.7
trellixpsirt@trellix.com 4.7 MEDIUM CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:L/I:L/A:L 0.6 3.7

CVSS 2.0

Severity: LOW

Problem Type: CWE-532,CWE-532,

Products Affected

Vendor Product Version
mcafee endpoint_security *
CVE-2020-7323 MEDIUM

Authentication Protection Bypass vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 September 2020 Update allows physical local users to bypass the Windows lock screen via triggering certain detection events while the computer screen is locked and the McTray.exe is running with elevated privileges. This issue is timing dependent and requires physical access to the machine.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.9 MEDIUM CVSS:3.1/AV:P/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:L 0.4 6.0
trellixpsirt@trellix.com 6.9 MEDIUM CVSS:3.1/AV:P/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:L 0.4 6.0

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-287,CWE-287,

Products Affected

Vendor Product Version
mcafee endpoint_security *
CVE-2020-7324 LOW

Improper Access Control vulnerability in McAfee MVISION Endpoint prior to 20.9 Update allows local users to bypass security mechanisms and deny access to the SYSTEM folder via incorrectly applied permissions.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 6.1 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H 1.8 4.2
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H 1.8 4.2

CVSS 2.0

Severity: LOW

Problem Type: CWE-269,CWE-269,

Products Affected

Vendor Product Version
mcafee mvision_endpoint *
CVE-2020-7325 MEDIUM

Privilege Escalation vulnerability in McAfee MVISION Endpoint prior to 20.9 Update allows local users to access files which the user otherwise would not have access to via manipulating symbolic links to redirect McAfee file operations to an unintended file.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9
trellixpsirt@trellix.com 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-59,CWE-59,

Products Affected

Vendor Product Version
mcafee mvision_endpoint *
CVE-2020-7326 MEDIUM

Improperly implemented security check in McAfee Active Response (MAR) prior to 2.4.4 may allow local administrators to execute malicious code via stopping a core Windows service leaving McAfee core trust component in an inconsistent state resulting in MAR failing open rather than closed

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.8 5.9
trellixpsirt@trellix.com 6.0 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H 0.8 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-290,CWE-290,

Products Affected

Vendor Product Version
mcafee active_response *
CVE-2020-7327 MEDIUM

Improperly implemented security check in McAfee MVISION Endpoint Detection and Response Client (MVEDR) prior to 3.2.0 may allow local administrators to execute malicious code via stopping a core Windows service leaving McAfee core trust component in an inconsistent state resulting in MVEDR failing open rather than closed

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 6.0 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H 0.8 5.2
nvd@nist.gov 6.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-290,CWE-290,

Products Affected

Vendor Product Version
mcafee mvision_endpoint_detection_and_response *
CVE-2020-7328 MEDIUM

External entity attack vulnerability in the ePO extension in McAfee MVISION Endpoint prior to 20.11 allows remote attackers to gain control of a resource or trigger arbitrary code execution via improper input validation of an HTTP request, where the content for the attack has been loaded into ePO by an ePO administrator.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.2 HIGH CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 1.2 5.9
trellixpsirt@trellix.com 7.2 HIGH CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 1.2 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-918,CWE-918,

Products Affected

Vendor Product Version
mcafee mvision_endpoint *
CVE-2020-7329 MEDIUM

Server-side request forgery vulnerability in the ePO extension in McAfee MVISION Endpoint prior to 20.11 allows remote attackers trigger server-side DNS requests to arbitrary domains via carefully constructed XML files loaded by an ePO administrator.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 7.2 HIGH CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 1.2 5.9
nvd@nist.gov 7.2 HIGH CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 1.2 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-918,CWE-918,

Products Affected

Vendor Product Version
mcafee mvision_endpoint *
CVE-2020-7330 MEDIUM

Privilege Escalation vulnerability in McAfee Total Protection (MTP) trial prior to 4.0.176.1 allows local users to schedule tasks which call malicious software to execute with elevated privileges via editing of environment variables

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H 2.0 6.0
trellixpsirt@trellix.com 7.5 HIGH CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H 0.8 6.0

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-269,CWE-269,

Products Affected

Vendor Product Version
mcafee total_protection *
CVE-2020-7331 MEDIUM

Unquoted service executable path in McAfee Endpoint Security (ENS) prior to 10.7.0 November 2020 Update allows local users to cause a denial of service and malicious file execution via carefully crafted and named executable files.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-428,CWE-428,

Products Affected

Vendor Product Version
mcafee endpoint_security *
CVE-2020-7332 MEDIUM

Cross Site Request Forgery vulnerability in the firewall ePO extension of McAfee Endpoint Security (ENS) prior to 10.7.0 November 2020 Update allows an attacker to execute arbitrary HTML code due to incorrect security configuration.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 7.0 HIGH CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:L 1.5 5.5
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 2.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,CWE-352,

Products Affected

Vendor Product Version
mcafee endpoint_security *
CVE-2020-7333 LOW

Cross site scripting vulnerability in the firewall ePO extension of McAfee Endpoint Security (ENS) prior to 10.7.0 November 2020 Update allows administrators to inject arbitrary web script or HTML via the configuration wizard.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.8 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N 1.7 2.7
trellixpsirt@trellix.com 4.8 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N 1.7 2.7

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,CWE-79,

Products Affected

Vendor Product Version
mcafee endpoint_security *
CVE-2020-7334 MEDIUM

Improper privilege assignment vulnerability in the installer McAfee Application and Change Control (MACC) prior to 8.3.2 allows local administrators to change or update the configuration settings via a carefully constructed MSI configured to mimic the genuine installer. This version adds further controls for installation/uninstallation of software.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.2 HIGH CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H 1.5 6.0
trellixpsirt@trellix.com 7.7 HIGH CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H 1.1 6.0

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-266,CWE-269,

Products Affected

Vendor Product Version
mcafee application_and_change_control *
CVE-2020-7335 MEDIUM

Privilege Escalation vulnerability in Microsoft Windows client McAfee Total Protection (MTP) prior to 16.0.29 allows local users to gain elevated privileges via careful manipulation of a folder by creating a junction link. This exploits a lack of protection through a timing issue and is only exploitable in a small time window.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 7.5 HIGH CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H 0.8 6.0
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H 1.1 6.0

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-269,

Products Affected

Vendor Product Version
mcafee total_protection *
CVE-2020-7336 MEDIUM

Cross Site Request Forgery vulnerability in McAfee Network Security Management (NSM) prior to 10.1.7.35 and NSM 9.x prior to 9.2.9.55 may allow an attacker to change the configuration of the Network Security Manager via a carefully crafted HTTP request.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 6.6 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:R/S:C/C:N/I:N/A:H 2.1 4.0
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N 2.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,CWE-352,

Products Affected

Vendor Product Version
mcafee network_security_management *
CVE-2020-7337 MEDIUM

Incorrect Permission Assignment for Critical Resource vulnerability in McAfee VirusScan Enterprise (VSE) prior to 8.8 Patch 16 allows local administrators to bypass local security protection through VSE not correctly integrating with Windows Defender Application Control via careful manipulation of the Code Integrity checks.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 6.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H 0.6 5.9
nvd@nist.gov 6.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-732,

Products Affected

Vendor Product Version
mcafee virusscan_enterprise 8.8
mcafee virusscan_enterprise *
CVE-2020-7339 MEDIUM

Use of a Broken or Risky Cryptographic Algorithm vulnerability in McAfee Database Security Server and Sensor prior to 4.8.0 in the form of a SHA1 signed certificate that would allow an attacker on the same local network to potentially intercept communication between the Server and Sensors.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 6.3 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L 2.8 3.4
nvd@nist.gov 6.3 MEDIUM CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L 2.8 3.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-327,CWE-327,

Products Affected

Vendor Product Version
mcafee database_security *
CVE-2020-7343 LOW

Missing Authorization vulnerability in McAfee Agent (MA) for Windows prior to 5.7.1 allows local users to block McAfee product updates by manipulating a directory used by MA for temporary files. The product would continue to function with out-of-date detection files.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-862,CWE-862,

Products Affected

Vendor Product Version
mcafee agent *
CVE-2020-7346 MEDIUM

Privilege Escalation vulnerability in McAfee Data Loss Prevention (DLP) for Windows prior to 11.6.100 allows a local, low privileged, attacker through the use of junctions to cause the product to load DLLs of the attacker's choosing. This requires the creation and removal of junctions by the attacker along with sending a specific IOTL command at the correct time.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-59,CWE-59,

Products Affected

Vendor Product Version
mcafee data_loss_prevention *
CVE-2020-9484 MEDIUM

When using Apache Tomcat versions 10.0.0-M1 to 10.0.0-M4, 9.0.0.M1 to 9.0.34, 8.5.0 to 8.5.54 and 7.0.0 to 7.0.103 if a) an attacker is able to control the contents and name of a file on the server; and b) the server is configured to use the PersistenceManager with a FileStore; and c) the PersistenceManager is configured with sessionAttributeValueClassNameFilter="null" (the default unless a SecurityManager is used) or a sufficiently lax filter to allow the attacker provided object to be deserialized; and d) the attacker knows the relative file path from the storage location used by FileStore to the file the attacker has control over; then, using a specifically crafted request, the attacker will be able to trigger remote code execution via deserialization of the file under their control. Note that all of conditions a) to d) must be true for the attack to succeed.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.0 HIGH CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H 1.0 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-502,

Products Affected

Vendor Product Version
oracle workload_manager 18c
fedoraproject fedora 32
oracle managed_file_transfer 12.2.1.4.0
opensuse leap 15.1
apache tomcat 9.0.0
oracle communications_diameter_signaling_router *
canonical ubuntu_linux 16.04
oracle instantis_enterprisetrack *
oracle transportation_management 6.3.7
oracle agile_plm 9.3.3
oracle siebel_ui_framework *
debian debian_linux 9.0
oracle agile_plm 9.3.6
oracle managed_file_transfer 12.2.1.3.0
oracle communications_cloud_native_core_binding_support_function 1.10.0
oracle hospitality_guest_access 4.2.0
apache tomcat 10.0.0
debian debian_linux 10.0
oracle communications_element_manager *
oracle agile_plm 9.3.5
oracle retail_order_broker 15.0
oracle communications_session_report_manager *
canonical ubuntu_linux 20.04
oracle database 21c
oracle database 12.2.0.1
fedoraproject fedora 31
oracle workload_manager 12.2.0.1
oracle fmw_platform 12.2.1.4.0
oracle siebel_apps_-_marketing *
oracle mysql_enterprise_monitor *
oracle fmw_platform 12.2.1.3.0
oracle communications_session_route_manager *
debian debian_linux 8.0
oracle hospitality_guest_access 4.2.1
oracle workload_manager 19c
oracle database 19c
oracle communications_instant_messaging_server 10.0.1.4.0
apache tomcat *
mcafee epolicy_orchestrator 5.9.0
oracle communications_cloud_native_core_policy 1.14.0
mcafee epolicy_orchestrator 5.9.1
mcafee epolicy_orchestrator 5.10.0
oracle agile_engineering_data_management 6.2.1.0
CVE-2021-1257 MEDIUM

A vulnerability in the web-based management interface of Cisco DNA Center Software could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack to manipulate an authenticated user into executing malicious actions without their awareness or consent. The vulnerability is due to insufficient CSRF protections for the web-based management interface of an affected device. An attacker could exploit this vulnerability by persuading a web-based management user to follow a specially crafted link. A successful exploit could allow the attacker to perform arbitrary actions on the device with the privileges of the authenticated user. These actions include modifying the device configuration, disconnecting the user's session, and executing Command Runner commands.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 2.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-352,CWE-352,

Products Affected

Vendor Product Version
cisco dna_center *
cisco catalyst_center *
mcafee agent *
CVE-2021-1258 LOW

A vulnerability in the upgrade component of Cisco AnyConnect Secure Mobility Client could allow an authenticated, local attacker with low privileges to read arbitrary files on the underlying operating system (OS) of an affected device. The vulnerability is due to insufficient file permission restrictions. An attacker could exploit this vulnerability by sending a crafted command from the local CLI to the application. A successful exploit could allow the attacker to read arbitrary files on the underlying OS of the affected device. The attacker would need to have valid user credentials to exploit this vulnerability.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
ykramarz@cisco.com 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-264,CWE-269,

Products Affected

Vendor Product Version
mcafee agent_epolicy_orchestrator_extension *
cisco anyconnect_secure_mobility_client *
CVE-2021-2161 MEDIUM

Vulnerability in the Java SE, Java SE Embedded, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: Libraries). Supported versions that are affected are Java SE: 7u291, 8u281, 11.0.10, 16; Java SE Embedded: 8u281; Oracle GraalVM Enterprise Edition: 19.3.5, 20.3.1.2 and 21.0.0.2. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE, Java SE Embedded, Oracle GraalVM Enterprise Edition. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE, Java SE Embedded, Oracle GraalVM Enterprise Edition accessible data. Note: This vulnerability applies to Java deployments that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. It can also be exploited by supplying untrusted data to APIs in the specified Component. CVSS 3.1 Base Score 5.9 (Integrity impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
secalert_us@oracle.com 5.9 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N 2.2 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
fedoraproject fedora 32
fedoraproject fedora 34
oracle graalvm 21.0.0.2
fedoraproject fedora 33
oracle jre 1.8.0
debian debian_linux 9.0
oracle jdk 11.0.10
oracle jdk 1.7.0
netapp hci_management_node -
netapp active_iq_unified_manager -
debian debian_linux 10.0
netapp hci_compute_node -
oracle graalvm 19.3.5
oracle openjdk *
oracle openjdk 16
netapp hci_storage_node -
netapp solidfire -
oracle jdk 16.0.0
mcafee epolicy_orchestrator *
oracle jdk 1.8.0
oracle openjdk 8
oracle graalvm 20.3.1.2
mcafee epolicy_orchestrator 5.10.0
oracle openjdk 7
CVE-2021-23840 MEDIUM

Calls to EVP_CipherUpdate, EVP_EncryptUpdate and EVP_DecryptUpdate may overflow the output length argument in some cases where the input length is close to the maximum permissable length for an integer on the platform. In such cases the return value from the function call will be 1 (indicating success), but the output length value will be negative. This could cause applications to behave incorrectly or crash. OpenSSL versions 1.1.1i and below are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1j. OpenSSL versions 1.0.2x and below are affected by this issue. However OpenSSL 1.0.2 is out of support and no longer receiving public updates. Premium support customers of OpenSSL 1.0.2 should upgrade to 1.0.2y. Other users should upgrade to 1.1.1j. Fixed in OpenSSL 1.1.1j (Affected 1.1.1-1.1.1i). Fixed in OpenSSL 1.0.2y (Affected 1.0.2-1.0.2x).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-190,

Products Affected

Vendor Product Version
fujitsu m10-4_firmware *
oracle business_intelligence 5.5.0.0.0
oracle graalvm 21.0.0.2
fujitsu m12-2_firmware *
fujitsu m12-2s_firmware *
oracle business_intelligence 12.2.1.3.0
tenable nessus_network_monitor 5.11.0
debian debian_linux 10.0
fujitsu m10-4s_firmware *
oracle mysql_server *
tenable log_correlation_engine *
oracle graalvm 19.3.5
tenable nessus_network_monitor 5.12.0
oracle business_intelligence 5.9.0.0.0
nodejs node.js 14.15.0
oracle nosql_database *
oracle business_intelligence 12.2.1.4.0
fujitsu m12-1_firmware *
fujitsu m10-1_firmware *
mcafee epolicy_orchestrator *
oracle jd_edwards_enterpriseone_tools *
tenable nessus_network_monitor 5.12.1
openssl openssl *
tenable nessus_network_monitor 5.13.0
oracle communications_cloud_native_core_policy 1.15.0
oracle jd_edwards_world_security a9.4
nodejs node.js *
oracle enterprise_manager_ops_center 12.4.0.0
tenable nessus_network_monitor 5.11.1
oracle enterprise_manager_for_storage_management 13.4.0.0
oracle graalvm 20.3.1.2
mcafee epolicy_orchestrator 5.10.0
CVE-2021-23872 MEDIUM

Privilege Escalation vulnerability in the File Lock component of McAfee Total Protection (MTP) prior to 16.0.32 allows a local user to gain elevated privileges by manipulating a symbolic link in the IOCTL interface.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9
trellixpsirt@trellix.com 7.8 HIGH CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H 1.1 6.0

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-59,CWE-59,

Products Affected

Vendor Product Version
mcafee total_protection *
CVE-2021-23873 LOW

Privilege Escalation vulnerability in McAfee Total Protection (MTP) prior to 16.0.30 allows a local user to gain elevated privileges and perform arbitrary file deletion as the SYSTEM user potentially causing Denial of Service via manipulating Junction link, after enumerating certain files, at a specific time.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H 1.8 4.2
trellixpsirt@trellix.com 7.8 HIGH CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H 1.1 6.0

CVSS 2.0

Severity: LOW

Problem Type: CWE-59,CWE-59,

Products Affected

Vendor Product Version
mcafee total_protection *
CVE-2021-23874 MEDIUM

Arbitrary Process Execution vulnerability in McAfee Total Protection (MTP) prior to 16.0.30 allows a local user to gain elevated privileges and execute arbitrary code bypassing MTP self-defense.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@mcafee.com 8.2 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H 1.5 6.0
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-269,CWE-732,

Products Affected

Vendor Product Version
mcafee total_protection *
CVE-2021-23876 HIGH

Bypass Remote Procedure call in McAfee Total Protection (MTP) prior to 16.0.30 allows a local user to gain elevated privileges and perform arbitrary file modification as the SYSTEM user potentially causing Denial of Service via executing carefully constructed malware.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 7.8 HIGH CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H 1.1 6.0
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-269,NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mcafee total_protection *
CVE-2021-23877 HIGH

Privilege escalation vulnerability in the Windows trial installer of McAfee Total Protection (MTP) prior to 16.0.34_x may allow a local user to run arbitrary code as the admin user by replacing a specific temporary file created during the installation of the trial version of MTP.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9
trellixpsirt@trellix.com 6.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.8 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-269,CWE-269,

Products Affected

Vendor Product Version
mcafee total_protection *
CVE-2021-23878 MEDIUM

Clear text storage of sensitive Information in memory vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 February 2021 Update allows a local user to view ENS settings and credentials via accessing process memory after the ENS administrator has performed specific actions. To exploit this, the local user has to access the relevant memory location immediately after an ENS administrator has made a configuration change through the console on their machine

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 7.3 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H 1.3 5.9
nvd@nist.gov 5.0 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:N 1.3 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-312,CWE-312,

Products Affected

Vendor Product Version
mcafee endpoint_security *
CVE-2021-23879 HIGH

Unquoted service path vulnerability in McAfee Endpoint Product Removal (EPR) Tool prior to 21.2 allows local administrators to execute arbitrary code, with higher-level privileges, via execution from a compromised folder. The tool did not enforce and protect the execution path. Local admin privileges are required to place the files in the required location.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.8 5.9
trellixpsirt@trellix.com 6.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.8 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-428,CWE-428,

Products Affected

Vendor Product Version
mcafee endpoint_product_removal_tool *
CVE-2021-23880 LOW

Improper Access Control in attribute in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 February 2021 Update allows authenticated local administrator user to perform an uninstallation of the anti-malware engine via the running of a specific command with the correct parameters.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.4 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N 0.8 3.6
trellixpsirt@trellix.com 6.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.8 5.9

CVSS 2.0

Severity: LOW

Problem Type: CWE-269,NVD-CWE-Other,

Products Affected

Vendor Product Version
mcafee endpoint_security *
CVE-2021-23881 LOW

A stored cross site scripting vulnerability in ePO extension of McAfee Endpoint Security (ENS) prior to 10.7.0 February 2021 Update allows an ENS ePO administrator to add a script to a policy event which will trigger the script to be run through a browser block page when a local non-administrator user triggers the policy.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.8 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N 1.7 2.7
trellixpsirt@trellix.com 4.8 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N 1.7 2.7

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,CWE-79,

Products Affected

Vendor Product Version
mcafee endpoint_security *
CVE-2021-23882 LOW

Improper Access Control vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 February 2021 Update allows local administrators to prevent the installation of some ENS files by placing carefully crafted files where ENS will be installed. This is only applicable to clean installations of ENS as the Access Control rules will prevent modification prior to up an upgrade.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.4 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N 0.8 3.6
trellixpsirt@trellix.com 8.2 HIGH CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H 1.5 6.0

CVSS 2.0

Severity: LOW

Problem Type: CWE-269,NVD-CWE-Other,

Products Affected

Vendor Product Version
mcafee endpoint_security *
CVE-2021-23883 MEDIUM

A Null Pointer Dereference vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 February 2021 Update allows a local administrator to cause Windows to crash via a specific system call which is not handled correctly. This varies by machine and had partial protection prior to this update.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 4.0 MEDIUM CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:N/I:N/A:H 0.3 3.6
nvd@nist.gov 4.4 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H 0.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,CWE-476,

Products Affected

Vendor Product Version
mcafee endpoint_security *
CVE-2021-23884 LOW

Cleartext Transmission of Sensitive Information vulnerability in the ePO Extension of McAfee Content Security Reporter (CSR) prior to 2.8.0 allows an ePO administrator to view the unencrypted password of the McAfee Web Gateway (MWG) or the password of the McAfee Web Gateway Cloud Server (MWGCS) read only user used to retrieve log files for analysis in CSR.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.3 MEDIUM CVSS:3.1/AV:A/AC:L/PR:H/UI:R/S:U/C:H/I:N/A:N 0.7 3.6
trellixpsirt@trellix.com 4.3 MEDIUM CVSS:3.1/AV:A/AC:L/PR:H/UI:R/S:U/C:H/I:N/A:N 0.7 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-319,CWE-319,

Products Affected

Vendor Product Version
mcafee content_security_reporter *
CVE-2021-23885 HIGH

Privilege escalation vulnerability in McAfee Web Gateway (MWG) prior to 9.2.8 allows an authenticated user to gain elevated privileges through the User Interface and execute commands on the appliance via incorrect improper neutralization of user input in the troubleshooting page.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 9.0 CRITICAL CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H 2.3 6.0
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.8 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-269,NVD-CWE-Other,

Products Affected

Vendor Product Version
mcafee web_gateway *
CVE-2021-23886 MEDIUM

Denial of Service vulnerability in McAfee Data Loss Prevention (DLP) Endpoint for Windows prior to 11.6.100 allows a local, low privileged, attacker to cause a BSoD through suspending a process, modifying the processes memory and restarting it. This is triggered by the hdlphook driver reading invalid memory.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-755,CWE-755,

Products Affected

Vendor Product Version
mcafee data_loss_prevention_endpoint *
CVE-2021-23887 HIGH

Privilege Escalation vulnerability in McAfee Data Loss Prevention (DLP) Endpoint for Windows prior to 11.6.100 allows a local, low privileged, attacker to write to arbitrary controlled kernel addresses. This is achieved by launching applications, suspending them, modifying the memory and restarting them when they are monitored by McAfee DLP through the hdlphook driver.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9
trellixpsirt@trellix.com 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-269,NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mcafee data_loss_prevention_endpoint *
CVE-2021-23888 MEDIUM

Unvalidated client-side URL redirect vulnerability in McAfee ePolicy Orchestrator (ePO) prior to 5.10 Update 10 could cause an authenticated ePO user to load an untrusted site in an ePO iframe which could steal information from the authenticated user.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 6.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:L/A:N 2.1 4.2
nvd@nist.gov 6.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:L/A:N 2.1 4.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-601,CWE-601,

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator *
mcafee epolicy_orchestrator 5.10.0
CVE-2021-23889 LOW

Cross-Site Scripting vulnerability in McAfee ePolicy Orchestrator (ePO) prior to 5.10 Update 10 allows ePO administrators to inject arbitrary web script or HTML via multiple parameters where the administrator's entries were not correctly sanitized.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.8 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N 1.7 2.7
trellixpsirt@trellix.com 3.5 LOW CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:L/A:N 0.9 2.5

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator *
mcafee epolicy_orchestrator 5.10.0
CVE-2021-23890 MEDIUM

Information leak vulnerability in the Agent Handler of McAfee ePolicy Orchestrator (ePO) prior to 5.10 Update 10 allows an unauthenticated user to download McAfee product packages (specifically McAfee Agent) available in ePO repository and install them on their own machines to have it managed and then in turn get policy details from the ePO server. This can only happen when the ePO Agent Handler is installed in a Demilitarized Zone (DMZ) to service machines not connected to the network through a VPN.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N 3.9 2.5
trellixpsirt@trellix.com 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N 3.9 2.5

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-200,CWE-200,

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator *
mcafee epolicy_orchestrator 5.10.0
CVE-2021-23891 MEDIUM

Privilege Escalation vulnerability in McAfee Total Protection (MTP) prior to 16.0.32 allows a local user to gain elevated privileges by impersonating a client token which could lead to the bypassing of MTP self-defense.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 7.8 HIGH CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H 1.1 6.0
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-269,CWE-269,

Products Affected

Vendor Product Version
mcafee total_protection *
CVE-2021-23892 MEDIUM

By exploiting a time of check to time of use (TOCTOU) race condition during the Endpoint Security for Linux Threat Prevention and Firewall (ENSL TP/FW) installation process, a local user can perform a privilege escalation attack to obtain administrator privileges for the purpose of executing arbitrary code through insecure use of predictable temporary file locations.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-59,CWE-367,

Products Affected

Vendor Product Version
mcafee endpoint_security_for_linux_threat_prevention *
CVE-2021-23893 MEDIUM

Privilege Escalation vulnerability in a Windows system driver of McAfee Drive Encryption (DE) prior to 7.3.0 could allow a local non-admin user to gain elevated system privileges via exploiting an unutilized memory buffer.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9
trellixpsirt@trellix.com 8.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H 2.0 6.0

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-269,CWE-269,

Products Affected

Vendor Product Version
mcafee drive_encryption *
mcafee drive_encryption 7.3.0
CVE-2021-23894 HIGH

Deserialization of untrusted data vulnerability in McAfee Database Security (DBSec) prior to 4.8.2 allows a remote unauthenticated attacker to create a reverse shell with administrator privileges on the DBSec server via carefully constructed Java serialized object sent to the DBSec server.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.8 HIGH CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 2.8 5.9
trellixpsirt@trellix.com 9.6 CRITICAL CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H 2.8 6.0

CVSS 2.0

Severity: HIGH

Problem Type: CWE-502,CWE-502,

Products Affected

Vendor Product Version
mcafee database_security *
CVE-2021-23895 HIGH

Deserialization of untrusted data vulnerability in McAfee Database Security (DBSec) prior to 4.8.2 allows a remote authenticated attacker to create a reverse shell with administrator privileges on the DBSec server via carefully constructed Java serialized object sent to the DBSec server.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.0 HIGH CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 2.1 5.9
trellixpsirt@trellix.com 9.0 CRITICAL CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H 2.3 6.0

CVSS 2.0

Severity: HIGH

Problem Type: CWE-502,CWE-502,

Products Affected

Vendor Product Version
mcafee database_security *
CVE-2021-23896 LOW

Cleartext Transmission of Sensitive Information vulnerability in the administrator interface of McAfee Database Security (DBSec) prior to 4.8.2 allows an administrator to view the unencrypted password of the McAfee Insights Server used to pass data to the Insights Server. This user is restricted to only have access to DBSec data in the Insights Server.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 3.2 LOW CVSS:3.1/AV:A/AC:L/PR:H/UI:R/S:U/C:L/I:L/A:N 0.7 2.5
nvd@nist.gov 4.5 MEDIUM CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N 0.9 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-319,CWE-319,

Products Affected

Vendor Product Version
mcafee database_security *
CVE-2021-2432 MEDIUM

Vulnerability in the Java SE product of Oracle Java SE (component: JNDI). The supported version that is affected is Java SE: 7u301. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise Java SE. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Java SE. Note: This vulnerability applies to Java deployments, typically in clients running sandboxed Java Web Start applications or sandboxed Java applets, that load and run untrusted code (e.g., code that comes from the internet) and rely on the Java sandbox for security. This vulnerability can also be exploited by using APIs in the specified Component, e.g., through a web service which supplies data to the APIs. CVSS 3.1 Base Score 3.7 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
secalert_us@oracle.com 3.7 LOW CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L 2.2 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator *
oracle jdk 1.7.0
mcafee epolicy_orchestrator 5.10.0
CVE-2021-30639 MEDIUM

A vulnerability in Apache Tomcat allows an attacker to remotely trigger a denial of service. An error introduced as part of a change to improve error handling during non-blocking I/O meant that the error flag associated with the Request object was not reset between requests. This meant that once a non-blocking I/O error occurred, all future requests handled by that request object would fail. Users were able to trigger non-blocking I/O errors, e.g. by dropping a connection, thereby creating the possibility of triggering a DoS. Applications that do not use non-blocking I/O are not exposed to this vulnerability. This issue affects Apache Tomcat 10.0.3 to 10.0.4; 9.0.44; 8.5.64.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.5 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H 3.9 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-755,

Products Affected

Vendor Product Version
apache tomcat 10.0.4
oracle big_data_spatial_and_graph *
apache tomcat 8.5.64
mcafee epolicy_orchestrator *
apache tomcat 9.0.44
mcafee epolicy_orchestrator 5.10.0
apache tomcat 10.0.3
CVE-2021-3156 HIGH

Sudo before 1.9.5p2 contains an off-by-one error that can result in a heap-based buffer overflow, which allows privilege escalation to root via "sudoedit -s" and a command-line argument that ends with a single backslash character.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-193,CWE-193,

Products Affected

Vendor Product Version
fedoraproject fedora 32
oracle micros_es400_firmware *
oracle tekelec_platform_distribution *
mcafee web_gateway 8.2.17
netapp cloud_backup -
fedoraproject fedora 33
netapp oncommand_unified_manager_core_package -
beyondtrust privilege_management_for_unix/linux *
oracle micros_kitchen_display_system_firmware 210
synology skynas_firmware -
debian debian_linux 9.0
synology vs960hd_firmware -
oracle communications_performance_intelligence_center *
netapp hci_management_node -
netapp active_iq_unified_manager -
debian debian_linux 10.0
synology diskstation_manager_unified_controller 3.0
mcafee web_gateway 10.0.4
netapp ontap_tools 9
oracle micros_workstation_6_firmware *
beyondtrust privilege_management_for_mac *
netapp solidfire -
netapp ontap_select_deploy_administration_utility -
sudo_project sudo 1.9.5
oracle micros_compact_workstation_3_firmware 310
sudo_project sudo *
synology diskstation_manager 6.2
oracle micros_workstation_5a_firmware 5a
mcafee web_gateway 9.2.8
CVE-2021-31830 LOW

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in McAfee Database Security (DBSec) prior to 4.8.2 allows an administrator to embed JavaScript code when configuring the name of a database to be monitored. This would be triggered when any authorized user logs into the DBSec interface and opens the properties configuration page for this database.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.8 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N 1.7 2.7
trellixpsirt@trellix.com 5.9 MEDIUM CVSS:3.1/AV:A/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:N 0.7 5.2

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,CWE-79,

Products Affected

Vendor Product Version
mcafee database_security *
CVE-2021-31831 MEDIUM

Incorrect access to deleted scripts vulnerability in McAfee Database Security (DBSec) prior to 4.8.2 allows a remote authenticated attacker to gain access to signed SQL scripts which have been marked as deleted or expired within the administrative console. This access was only available through the REST API.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L 2.1 3.4
trellixpsirt@trellix.com 4.9 MEDIUM CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L 1.5 3.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-552,CWE-552,

Products Affected

Vendor Product Version
mcafee database_security *
CVE-2021-31832 LOW

Improper Neutralization of Input in the ePO administrator extension for McAfee Data Loss Prevention (DLP) Endpoint for Windows prior to 11.6.200 allows a remote ePO DLP administrator to inject JavaScript code into the alert configuration text field. This JavaScript will be executed when an end user triggers a DLP policy on their machine.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.8 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N 1.7 2.7
trellixpsirt@trellix.com 5.2 MEDIUM CVSS:3.1/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:L/A:N 0.9 4.2

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,CWE-79,

Products Affected

Vendor Product Version
mcafee data_loss_prevention *
CVE-2021-31833 MEDIUM

Potential product security bypass vulnerability in McAfee Application and Change Control (MACC) prior to version 8.3.4 allows a locally logged in attacker to circumvent the application solidification protection provided by MACC, permitting them to run applications that would usually be prevented by MACC. This would require the attacker to rename the specified binary to match name of any configured updater and perform a specific set of steps, resulting in the renamed binary to be to run.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 7.1 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H 1.8 5.2
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-269,NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mcafee application_and_change_control *
CVE-2021-31834 LOW

Stored Cross-Site Scripting vulnerability in McAfee ePolicy Orchestrator (ePO) prior to 5.10 Update 11 allows ePO administrators to inject arbitrary web script or HTML via multiple parameters where the administrator's entries were not correctly sanitized.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N 2.3 2.7

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,CWE-79,

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator *
mcafee epolicy_orchestrator 5.10.0
CVE-2021-31835 MEDIUM

Cross-Site Scripting vulnerability in McAfee ePolicy Orchestrator (ePO) prior to 5.10 Update 11 allows ePO administrators to inject arbitrary web script or HTML via a specific parameter where the administrator's entries were not correctly sanitized.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 4.8 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N 1.7 2.7
nvd@nist.gov 4.8 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N 1.7 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,CWE-79,

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator *
mcafee epolicy_orchestrator 5.10.0
CVE-2021-31836 LOW

Improper privilege management vulnerability in maconfig for McAfee Agent for Windows prior to 5.7.4 allows a local user to gain access to sensitive information. The utility was able to be run from any location on the file system and by a low privileged user.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.1 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N 1.8 5.2
trellixpsirt@trellix.com 5.6 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:L/A:N 1.3 4.2

CVSS 2.0

Severity: LOW

Problem Type: CWE-269,NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mcafee mcafee_agent *
CVE-2021-31837 MEDIUM

Memory corruption vulnerability in the driver file component in McAfee GetSusp prior to 4.0.0 could allow a program being investigated on the local machine to trigger a buffer overflow in GetSusp, leading to the execution of arbitrary code, potentially triggering a BSOD.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9
trellixpsirt@trellix.com 8.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H 2.0 6.0

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-787,CWE-787,

Products Affected

Vendor Product Version
mcafee getsusp *
CVE-2021-31838 HIGH

A command injection vulnerability in MVISION EDR (MVEDR) prior to 3.4.0 allows an authenticated MVEDR administrator to trigger the EDR client to execute arbitrary commands through PowerShell using the EDR functionality 'execute reaction'.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-78,CWE-78,

Products Affected

Vendor Product Version
mcafee mvision_edr *
CVE-2021-31839 LOW

Improper privilege management vulnerability in McAfee Agent for Windows prior to 5.7.3 allows a local user to modify event information in the MA event folder. This allows a local user to either add false events or remove events from the event logs prior to them being sent to the ePO server.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.3 LOW CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N 1.8 1.4
trellixpsirt@trellix.com 4.8 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L 1.3 3.4

CVSS 2.0

Severity: LOW

Problem Type: CWE-269,NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mcafee agent *
CVE-2021-31840 MEDIUM

A vulnerability in the preloading mechanism of specific dynamic link libraries in McAfee Agent for Windows prior to 5.7.3 could allow an authenticated, local attacker to perform a DLL preloading attack with unsigned DLLs. To exploit this vulnerability, the attacker would need to have valid credentials on the Windows system. This would result in the user gaining elevated permissions and being able to execute arbitrary code.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.3 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H 1.3 5.9
trellixpsirt@trellix.com 7.3 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H 1.3 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-427,CWE-427,

Products Affected

Vendor Product Version
mcafee mcafee_agent *
CVE-2021-31841 MEDIUM

A DLL sideloading vulnerability in McAfee Agent for Windows prior to 5.7.4 could allow a local user to perform a DLL sideloading attack with an unsigned DLL with a specific name and in a specific location. This would result in the user gaining elevated permissions and the ability to execute arbitrary code as the system user, through not checking the DLL signature.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 8.2 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H 1.5 6.0
nvd@nist.gov 7.3 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H 1.3 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-347,CWE-426,CWE-347,CWE-426,

Products Affected

Vendor Product Version
mcafee mcafee_agent *
CVE-2021-31842 LOW

XML Entity Expansion injection vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 September 2021 Update allows a local user to initiate high CPU and memory consumption resulting in a Denial of Service attack through carefully editing the EPDeploy.xml file and then executing the setup process.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6
trellixpsirt@trellix.com 5.0 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H 1.3 3.6

CVSS 2.0

Severity: LOW

Problem Type: CWE-776,CWE-776,

Products Affected

Vendor Product Version
mcafee endpoint_security 10.7.0
mcafee endpoint_security *
CVE-2021-31843 MEDIUM

Improper privileges management vulnerability in McAfee Endpoint Security (ENS) Windows prior to 10.7.0 September 2021 Update allows local users to access files which they would otherwise not have access to via manipulating junction links to redirect McAfee folder operations to an unintended location.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@mcafee.com 7.3 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H 1.3 5.9
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-59,CWE-59,

Products Affected

Vendor Product Version
mcafee endpoint_security 10.7.0
mcafee endpoint_security *
CVE-2021-31844 MEDIUM

A buffer overflow vulnerability in McAfee Data Loss Prevention (DLP) Endpoint for Windows prior to 11.6.200 allows a local attacker to execute arbitrary code with elevated privileges through placing carefully constructed Ami Pro (.sam) files onto the local system and triggering a DLP Endpoint scan through accessing a file. This is caused by the destination buffer being of fixed size and incorrect checks being made on the source size.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 8.2 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H 1.5 6.0
nvd@nist.gov 7.3 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H 1.3 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-120,CWE-120,

Products Affected

Vendor Product Version
mcafee data_loss_prevention_endpoint *
CVE-2021-31845 MEDIUM

A buffer overflow vulnerability in McAfee Data Loss Prevention (DLP) Discover prior to 11.6.100 allows an attacker in the same network as the DLP Discover to execute arbitrary code through placing carefully constructed Ami Pro (.sam) files onto a machine and having DLP Discover scan it, leading to remote code execution with elevated privileges. This is caused by the destination buffer being of fixed size and incorrect checks being made on the source size.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.3 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H 1.3 5.9
trellixpsirt@trellix.com 8.4 HIGH CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H 1.7 6.0

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-120,CWE-120,

Products Affected

Vendor Product Version
mcafee data_loss_prevention_discover *
CVE-2021-31847 MEDIUM

Improper access control vulnerability in the repair process for McAfee Agent for Windows prior to 5.7.4 could allow a local attacker to perform a DLL preloading attack using unsigned DLLs. This would result in elevation of privileges and the ability to execute arbitrary code as the system user, through not correctly protecting a temporary directory used in the repair process and not checking the DLL signature.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 8.2 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H 1.5 6.0
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-269,CWE-347,CWE-427,

Products Affected

Vendor Product Version
mcafee agent *
CVE-2021-31848 LOW

Cross site scripting (XSS) vulnerability in McAfee Data Loss Prevention (DLP) ePO extension prior to 11.7.100 allows a remote attacker to highjack an active DLP ePO administrator session by convincing the logged in administrator to click on a carefully crafted link in the case management part of the DLP ePO extension.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 8.4 HIGH CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H 1.7 6.0
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,CWE-79,

Products Affected

Vendor Product Version
mcafee data_loss_prevention_endpoint *
CVE-2021-31849 MEDIUM

SQL injection vulnerability in McAfee Data Loss Prevention (DLP) ePO extension prior to 11.7.100 allows a remote attacker logged into ePO as an administrator to inject arbitrary SQL into the ePO database through the user management section of the DLP ePO extension.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 8.4 HIGH CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H 1.7 6.0
nvd@nist.gov 7.2 HIGH CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 1.2 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-89,CWE-89,

Products Affected

Vendor Product Version
mcafee data_loss_prevention_endpoint *
CVE-2021-31850 MEDIUM

A denial-of-service vulnerability in Database Security (DBS) prior to 4.8.4 allows a remote authenticated administrator to trigger a denial-of-service attack against the DBS server. The configuration of Archiving through the User interface incorrectly allowed the creation of directories and files in Windows system directories and other locations where sensitive data could be overwritten. The former could lead to a DoS, whilst the latter could lead to data destruction on the DBS server.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:H/A:H 0.9 5.2
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:H/A:H 0.9 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-552,CWE-552,

Products Affected

Vendor Product Version
mcafee database_security *
CVE-2021-31851 MEDIUM

A Reflected Cross-Site Scripting vulnerability in McAfee Policy Auditor prior to 6.5.2 allows a remote unauthenticated attacker to inject arbitrary web script or HTML via the profileNodeID request parameters. The malicious script is reflected unmodified into the Policy Auditor web-based interface which could lead to the extraction of end user session token or login credentials. These may be used to access additional security-critical applications or conduct arbitrary cross-domain requests.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7
trellixpsirt@trellix.com 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,CWE-79,

Products Affected

Vendor Product Version
mcafee policy_auditor *
CVE-2021-31852 MEDIUM

A Reflected Cross-Site Scripting vulnerability in McAfee Policy Auditor prior to 6.5.2 allows a remote unauthenticated attacker to inject arbitrary web script or HTML via the UID request parameter. The malicious script is reflected unmodified into the Policy Auditor web-based interface which could lead to the extract of end user session token or login credentials. These may be used to access additional security-critical applications or conduct arbitrary cross-domain requests.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7
trellixpsirt@trellix.com 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,CWE-79,

Products Affected

Vendor Product Version
mcafee policy_auditor *
CVE-2021-31853 MEDIUM

DLL Search Order Hijacking Vulnerability in McAfee Drive Encryption (MDE) prior to 7.3.0 HF2 (7.3.0.183) allows local users to execute arbitrary code and escalate privileges via execution from a compromised folder.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-427,CWE-427,

Products Affected

Vendor Product Version
mcafee drive_encryption *
mcafee drive_encryption 7.3.0
CVE-2021-31854 HIGH

A command Injection Vulnerability in McAfee Agent (MA) for Windows prior to 5.7.5 allows local users to inject arbitrary shell code into the file cleanup.exe. The malicious clean.exe file is placed into the relevant folder and executed by running the McAfee Agent deployment feature located in the System Tree. An attacker may exploit the vulnerability to obtain a reverse shell which can lead to privilege escalation to obtain root privileges.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-78,CWE-78,

Products Affected

Vendor Product Version
mcafee agent *
CVE-2021-33037 MEDIUM

Apache Tomcat 10.0.0-M1 to 10.0.6, 9.0.0.M1 to 9.0.46 and 8.5.0 to 8.5.66 did not correctly parse the HTTP transfer-encoding request header in some circumstances leading to the possibility to request smuggling when used with a reverse proxy. Specifically: - Tomcat incorrectly ignored the transfer encoding header if the client declared it would only accept an HTTP/1.0 response; - Tomcat honoured the identify encoding; and - Tomcat did not ensure that, if present, the chunked encoding was the final encoding.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-444,CWE-444,

Products Affected

Vendor Product Version
oracle managed_file_transfer 12.2.1.4.0
oracle communications_diameter_signaling_router *
oracle graph_server_and_client *
debian debian_linux 9.0
oracle instantis_enterprisetrack 17.1
oracle agile_plm 9.3.6
oracle managed_file_transfer 12.2.1.3.0
oracle utilities_testing_accelerator 6.0.0.1.1
oracle utilities_testing_accelerator 6.0.0.3.1
debian debian_linux 10.0
oracle communications_instant_messaging_server 10.0.1.5.0
oracle communications_session_report_manager *
oracle sd-wan_edge 9.0
oracle utilities_testing_accelerator 6.0.0.2.2
oracle mysql_enterprise_monitor *
oracle communications_cloud_native_core_service_communication_proxy 1.14.0
oracle secure_global_desktop 5.6
oracle healthcare_translational_research 4.1.0
oracle communications_session_route_manager *
oracle instantis_enterprisetrack 17.3
mcafee epolicy_orchestrator *
oracle hospitality_cruise_shipboard_property_management_system 20.1.0
apache tomee 8.0.6
apache tomcat *
oracle communications_cloud_native_core_policy 1.14.0
oracle communications_policy_management 12.5.0
oracle communications_pricing_design_center 12.0.0.3.0
oracle instantis_enterprisetrack 17.2
mcafee epolicy_orchestrator 5.10.0
oracle sd-wan_edge 9.1
CVE-2021-3449 MEDIUM

An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it was present in the initial ClientHello), but includes a signature_algorithms_cert extension then a NULL pointer dereference will result, leading to a crash and a denial of service attack. A server is only vulnerable if it has TLSv1.2 and renegotiation enabled (which is the default configuration). OpenSSL TLS clients are not impacted by this issue. All OpenSSL 1.1.1 versions are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1k. OpenSSL 1.0.2 is not impacted by this issue. Fixed in OpenSSL 1.1.1k (Affected 1.1.1-1.1.1j).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.9 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H 2.2 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-476,

Products Affected

Vendor Product Version
checkpoint multi-domain_management_firmware r81
oracle peoplesoft_enterprise_peopletools 8.59
siemens scalance_xr552-12_firmware *
netapp oncommand_workflow_automation -
netapp e-series_performance_analyzer -
siemens scalance_xr524-8c_firmware *
siemens tia_administrator *
siemens scalance_w700_firmware *
mcafee web_gateway_cloud_service 9.2.10
siemens scalance_s612_firmware *
checkpoint quantum_security_gateway_firmware r80.40
siemens simatic_cp_1242-7_gprs_v2_firmware *
netapp santricity_smi-s_provider -
tenable log_correlation_engine *
oracle graalvm 19.3.5
oracle mysql_workbench *
siemens simatic_hmi_basic_panels_2nd_generation_firmware *
siemens simatic_rf188ci_firmware *
siemens simatic_pcs_7_telecontrol_firmware *
siemens simatic_pcs_neo_firmware *
siemens simatic_rf166c_firmware *
oracle primavera_unifier 20.12
siemens simatic_mv500_firmware *
siemens simatic_process_historian_opc_ua_server_firmware *
siemens simatic_net_cp_1543sp-1_firmware *
oracle jd_edwards_enterpriseone_tools *
siemens scalance_xf-200ba_firmware *
siemens scalance_s627-2m_firmware *
nodejs node.js *
tenable nessus_network_monitor 5.11.1
freebsd freebsd 12.2
netapp cloud_volumes_ontap_mediator -
siemens scalance_xp-200_firmware *
siemens simatic_cloud_connect_7_firmware -
oracle peoplesoft_enterprise_peopletools 8.58
oracle zfs_storage_appliance_kit 8.8
debian debian_linux 9.0
siemens simatic_rf186ci_firmware *
netapp storagegrid -
siemens simatic_s7-1200_cpu_1212c_firmware *
netapp active_iq_unified_manager -
siemens scalance_lpe9403_firmware *
siemens scalance_xr526-8c_firmware *
siemens scalance_s623_firmware *
siemens simatic_rf188c_firmware *
oracle secure_global_desktop 5.6
oracle essbase 21.2
siemens ruggedcom_rcm1224_firmware *
mcafee web_gateway_cloud_service 8.2.19
siemens simatic_net_cp1243-7_lte_eu_firmware *
tenable nessus_network_monitor 5.13.0
siemens simatic_s7-1200_cpu_1215c_firmware *
siemens simatic_net_cp_1243-1_firmware *
oracle primavera_unifier 19.12
oracle secure_backup *
checkpoint quantum_security_management_firmware r80.40
siemens simatic_logon 1.5
oracle jd_edwards_world_security a9.4
oracle enterprise_manager_for_storage_management 13.4.0.0
siemens scalance_xm-400_firmware *
siemens simatic_s7-1500_cpu_1518-4_pn/dp_mfp_firmware *
siemens simatic_rf185c_firmware *
fedoraproject fedora 34
mcafee web_gateway 9.2.10
tenable nessus_network_monitor 5.11.0
oracle primavera_unifier 21.12
siemens simatic_rf186c_firmware *
oracle mysql_server *
netapp snapcenter -
siemens sinamics_connect_300_firmware *
siemens simatic_net_cp1243-7_lte_us_firmware *
checkpoint multi-domain_management_firmware r80.40
siemens tim_1531_irc_firmware *
checkpoint quantum_security_management_firmware r81
siemens simatic_wincc_runtime_advanced *
siemens simatic_s7-1200_cpu_1211c_firmware *
siemens scalance_xr-300wg_firmware *
tenable nessus *
sonicwall sma100_firmware *
siemens simatic_s7-1200_cpu_1214_fc_firmware *
sonicwall sonicos 7.0.1.0
siemens sinema_server 14.0
tenable tenable.sc *
siemens scalance_xc-200_firmware *
siemens simatic_hmi_comfort_outdoor_panels_firmware *
siemens sinec_nms 1.0
openssl openssl *
siemens scalance_m-800_firmware *
siemens simatic_net_cp_1243-8_irc_firmware *
oracle peoplesoft_enterprise_peopletools 8.57
siemens sinumerik_opc_ua_server *
siemens simatic_net_cp_1542sp-1_irc_firmware *
siemens simatic_cp_1242-7_gprs_v2_firmware -
siemens scalance_sc-600_firmware *
oracle graalvm 20.3.1.2
siemens simatic_s7-1200_cpu_1214c_firmware *
oracle graalvm 21.0.0.2
siemens scalance_s602_firmware *
siemens simatic_net_cp_1543-1_firmware *
siemens simatic_rf360r_firmware *
siemens sinec_infrastructure_network_services *
debian debian_linux 10.0
siemens simatic_pdm_firmware *
mcafee web_gateway 10.1.1
siemens simatic_s7-1200_cpu_1217c_firmware *
siemens scalance_xb-200_firmware *
sonicwall capture_client 3.5
oracle primavera_unifier *
tenable nessus_network_monitor 5.12.0
siemens simatic_cloud_connect_7_firmware *
siemens scalance_xr528-6m_firmware *
siemens simatic_s7-1200_cpu_1212fc_firmware *
siemens simatic_hmi_ktp_mobile_panels_firmware *
mcafee web_gateway 8.2.19
checkpoint quantum_security_gateway_firmware r81
netapp ontap_select_deploy_administration_utility -
siemens simatic_s7-1200_cpu_1215_fc_firmware *
siemens simatic_net_cp_1545-1_firmware *
siemens scalance_s615_firmware *
siemens sinec_pni -
tenable nessus_network_monitor 5.12.1
siemens simatic_wincc_telecontrol -
oracle communications_communications_policy_management 12.6.0.0.0
siemens scalance_w1700_firmware *
netapp oncommand_insight -
siemens simatic_logon *
mcafee web_gateway_cloud_service 10.1.1
oracle mysql_connectors *
CVE-2021-3450 MEDIUM

The X509_V_FLAG_X509_STRICT flag enables additional security checks of the certificates present in a certificate chain. It is not set by default. Starting from OpenSSL version 1.1.1h a check to disallow certificates in the chain that have explicitly encoded elliptic curve parameters was added as an additional strict check. An error in the implementation of this check meant that the result of a previous check to confirm that certificates in the chain are valid CA certificates was overwritten. This effectively bypasses the check that non-CA certificates must not be able to issue other certificates. If a "purpose" has been configured then there is a subsequent opportunity for checks that the certificate is a valid CA. All of the named "purpose" values implemented in libcrypto perform this check. Therefore, where a purpose is set the certificate chain will still be rejected even when the strict flag has been used. A purpose is set by default in libssl client and server certificate verification routines, but it can be overridden or removed by an application. In order to be affected, an application must explicitly set the X509_V_FLAG_X509_STRICT verification flag and either not set a purpose for the certificate verification or, in the case of TLS client or server applications, override the default purpose. OpenSSL versions 1.1.1h and newer are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1k. OpenSSL 1.0.2 is not impacted by this issue. Fixed in OpenSSL 1.1.1k (Affected 1.1.1h-1.1.1j).

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.4 HIGH CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N 2.2 5.2

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-295,

Products Affected

Vendor Product Version
fedoraproject fedora 34
oracle graalvm 21.0.0.2
netapp oncommand_workflow_automation -
netapp santricity_smi-s_provider_firmware -
netapp storagegrid -
mcafee web_gateway 9.2.10
mcafee web_gateway_cloud_service 9.2.10
tenable nessus_network_monitor 5.11.0
windriver linux 18.0
oracle mysql_server *
sonicwall sonicos *
oracle commerce_guided_search 11.3.2
mcafee web_gateway 10.1.1
oracle graalvm 19.3.5
windriver linux 17.0
oracle mysql_workbench *
tenable nessus_network_monitor 5.12.0
oracle mysql_enterprise_monitor *
oracle secure_global_desktop 5.6
mcafee web_gateway 8.2.19
oracle weblogic_server 12.2.1.4.0
tenable nessus *
sonicwall sma100_firmware *
netapp ontap_select_deploy_administration_utility -
windriver linux -
sonicwall capture_client *
oracle weblogic_server 14.1.1.0.0
tenable nessus_agent *
sonicwall email_security *
oracle jd_edwards_enterpriseone_tools *
mcafee web_gateway_cloud_service 8.2.19
tenable nessus_network_monitor 5.12.1
openssl openssl *
tenable nessus_network_monitor 5.13.0
oracle peoplesoft_enterprise_peopletools *
oracle secure_backup *
netapp storagegrid_firmware -
oracle jd_edwards_world_security a9.4
nodejs node.js *
tenable nessus_network_monitor 5.11.1
oracle enterprise_manager_for_storage_management 13.4.0.0
freebsd freebsd 12.2
netapp cloud_volumes_ontap_mediator -
windriver linux 19.0
oracle graalvm 20.3.1.2
mcafee web_gateway_cloud_service 10.1.1
oracle mysql_connectors *
CVE-2021-3712 MEDIUM

ASN.1 strings are represented internally within OpenSSL as an ASN1_STRING structure which contains a buffer holding the string data and a field holding the buffer length. This contrasts with normal C strings which are repesented as a buffer for the string data which is terminated with a NUL (0) byte. Although not a strict requirement, ASN.1 strings that are parsed using OpenSSL's own "d2i" functions (and other similar parsing functions) as well as any string whose value has been set with the ASN1_STRING_set() function will additionally NUL terminate the byte array in the ASN1_STRING structure. However, it is possible for applications to directly construct valid ASN1_STRING structures which do not NUL terminate the byte array by directly setting the "data" and "length" fields in the ASN1_STRING array. This can also happen by using the ASN1_STRING_set0() function. Numerous OpenSSL functions that print ASN.1 data have been found to assume that the ASN1_STRING byte array will be NUL terminated, even though this is not guaranteed for strings that have been directly constructed. Where an application requests an ASN.1 structure to be printed, and where that ASN.1 structure contains ASN1_STRINGs that have been directly constructed by the application without NUL terminating the "data" field, then a read buffer overrun can occur. The same thing can also occur during name constraints processing of certificates (for example if a certificate has been directly constructed by the application instead of loading it via the OpenSSL parsing functions, and the certificate contains non NUL terminated ASN1_STRING structures). It can also occur in the X509_get1_email(), X509_REQ_get1_email() and X509_get1_ocsp() functions. If a malicious actor can cause an application to directly construct an ASN1_STRING and then process it through one of the affected OpenSSL functions then this issue could be hit. This might result in a crash (causing a Denial of Service attack). It could also result in the disclosure of private memory contents (such as private keys, or sensitive plaintext). Fixed in OpenSSL 1.1.1l (Affected 1.1.1-1.1.1k). Fixed in OpenSSL 1.0.2za (Affected 1.0.2-1.0.2y).

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-125,

Products Affected

Vendor Product Version
oracle peoplesoft_enterprise_peopletools 8.58
oracle peoplesoft_enterprise_peopletools 8.59
oracle zfs_storage_appliance_kit 8.8
oracle secure_backup 18.1.0.1.0
debian debian_linux 9.0
netapp hci_management_node -
siemens sinec_infrastructure_network_services *
oracle enterprise_session_border_controller 8.4
oracle health_sciences_inform_publisher 6.3.1.1
debian debian_linux 10.0
oracle communications_unified_session_manager 8.4.5
oracle mysql_server *
oracle health_sciences_inform_publisher 6.2.1.0
netapp santricity_smi-s_provider -
oracle enterprise_communications_broker 3.2.0
netapp storage_encryption -
oracle mysql_workbench *
oracle communications_cloud_native_core_console 1.9.0
tenable nessus_network_monitor *
oracle communications_session_border_controller 8.4
oracle mysql_enterprise_monitor *
debian debian_linux 11.0
oracle essbase *
netapp solidfire -
tenable tenable.sc *
mcafee epolicy_orchestrator *
netapp clustered_data_ontap_antivirus_connector -
oracle jd_edwards_enterpriseone_tools *
oracle communications_session_border_controller 9.0
oracle essbase 21.3
openssl openssl *
oracle communications_unified_session_manager 8.2.5
netapp clustered_data_ontap -
oracle enterprise_session_border_controller 9.0
netapp manageability_software_development_kit -
oracle communications_cloud_native_core_security_edge_protection_proxy 1.7.0
oracle communications_cloud_native_core_unified_data_repository 1.15.0
oracle jd_edwards_world_security a9.4
oracle peoplesoft_enterprise_peopletools 8.57
mcafee epolicy_orchestrator 5.10.0
netapp e-series_santricity_os_controller *
oracle enterprise_communications_broker 3.3.0
oracle mysql_connectors *
CVE-2021-4038 LOW

Cross Site Scripting (XSS) vulnerability in McAfee Network Security Manager (NSM) prior to 10.1 Minor 7 allows a remote authenticated administrator to embed a XSS in the administrator interface via specially crafted custom rules containing HTML. NSM did not correctly sanitize custom rule content in all scenarios.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.8 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N 1.7 2.7
trellixpsirt@trellix.com 4.8 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N 1.7 2.7

CVSS 2.0

Severity: LOW

Problem Type: CWE-79,CWE-79,

Products Affected

Vendor Product Version
mcafee network_security_manager *
CVE-2021-4088 MEDIUM

SQL injection vulnerability in Data Loss Protection (DLP) ePO extension 11.8.x prior to 11.8.100, 11.7.x prior to 11.7.101, and 11.6.401 allows a remote authenticated attacker to inject unfiltered SQL into the DLP part of the ePO database. This could lead to remote code execution on the ePO server with privilege escalation.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.2 HIGH CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 1.2 5.9
trellixpsirt@trellix.com 8.4 HIGH CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H 1.7 6.0

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-89,CWE-89,

Products Affected

Vendor Product Version
mcafee data_loss_prevention *
mcafee data_loss_prevention 11.6.401
CVE-2022-0129 HIGH

Uncontrolled search path element vulnerability in McAfee TechCheck prior to 4.0.0.2 allows a local administrator to load their own Dynamic Link Library (DLL) gaining elevation of privileges to system user. This was achieved through placing the malicious DLL in the same directory that the process was run from.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 7.4 HIGH CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:N/I:H/A:H 1.1 5.8
nvd@nist.gov 6.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.8 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-427,

Products Affected

Vendor Product Version
mcafee techcheck *
CVE-2022-0166 HIGH

A privilege escalation vulnerability in the McAfee Agent prior to 5.7.5. McAfee Agent uses openssl.cnf during the build process to specify the OPENSSLDIR variable as a subdirectory within the installation directory. A low privilege user could have created subdirectories and executed arbitrary code with SYSTEM privileges by creating the appropriate pathway to the specifically created malicious openssl.cnf file.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@mcafee.com 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-427,

Products Affected

Vendor Product Version
mcafee agent *
CVE-2022-0815 HIGH

Improper access control vulnerability in McAfee WebAdvisor Chrome and Edge browser extensions up to 8.1.0.1895 allows a remote attacker to gain access to McAfee WebAdvisor settings and other details about the user’s system. This could lead to unexpected behaviors including; settings being changed, fingerprinting of the system leading to targeted scams, and not triggering the malicious software if McAfee software is detected.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L 3.9 2.5
nvd@nist.gov 7.3 HIGH CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L 3.9 3.4

CVSS 2.0

Severity: HIGH

Problem Type: CWE-668,CWE-668,

Products Affected

Vendor Product Version
mcafee webadvisor *
CVE-2022-0842 MEDIUM

A blind SQL injection vulnerability in McAfee Enterprise ePolicy Orchestrator (ePO) prior to 5.10 Update 13 allows a remote authenticated attacker to potentially obtain information from the ePO database. The data obtained is dependent on the privileges the attacker has and to obtain sensitive data the attacker would require administrator privileges.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 5.4 MEDIUM CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:C/C:H/I:N/A:N 1.0 4.0
nvd@nist.gov 4.9 MEDIUM CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N 1.2 3.6

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-89,CWE-89,

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator *
mcafee epolicy_orchestrator 5.10.0
CVE-2022-0857 MEDIUM

A reflected cross-site scripting (XSS) vulnerability in McAfee Enterprise ePolicy Orchestrator (ePO) prior to 5.10 Update 13 allows a remote attacker to potentially obtain access to an ePO administrator's session by convincing the attacker to click on a carefully crafted link. This would lead to limited access to sensitive information and limited ability to alter some information in ePO due to the area of the User Interface the vulnerability is present in.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7
trellixpsirt@trellix.com 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N 2.8 2.5

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,CWE-79,

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator *
mcafee epolicy_orchestrator 5.10.0
CVE-2022-0858 MEDIUM

A cross-site scripting (XSS) vulnerability in McAfee Enterprise ePolicy Orchestrator (ePO) prior to 5.10 Update 13 allows a remote attacker to potentially obtain access to an ePO administrator's session by convincing the attacker to click on a carefully crafted link. This would lead to limited ability to alter some information in ePO due to the area of the User Interface the vulnerability is present in.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 4.7 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N 2.8 1.4
trellixpsirt@trellix.com 4.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N 2.8 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-79,CWE-79,

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator *
mcafee epolicy_orchestrator 5.10.0
CVE-2022-0859 MEDIUM

McAfee Enterprise ePolicy Orchestrator (ePO) prior to 5.10 Update 13 allows a local attacker to point an ePO server to an arbitrary SQL server during the restoration of the ePO server. To achieve this the attacker would have to be logged onto the server hosting the ePO server (restricted to administrators) and to know the SQL server password.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.8 5.9
trellixpsirt@trellix.com 6.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H 0.6 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-522,CWE-522,

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator *
mcafee epolicy_orchestrator 5.10.0
CVE-2022-0861 MEDIUM

A XML Extended entity vulnerability in McAfee Enterprise ePolicy Orchestrator (ePO) prior to 5.10 Update 13 allows a remote administrator attacker to upload a malicious XML file through the extension import functionality. The impact is limited to some access to confidential information and some ability to alter data.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 3.8 LOW CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N 1.2 2.5
trellixpsirt@trellix.com 3.5 LOW CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:L/A:N 0.9 2.5

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-611,CWE-611,

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator *
mcafee epolicy_orchestrator 5.10.0
CVE-2022-0862 MEDIUM

A lack of password change protection vulnerability in a depreciated API of McAfee Enterprise ePolicy Orchestrator (ePO) prior to 5.10 Update 13 allows a remote attacker to change the password of a compromised session without knowing the existing user's password. This functionality was removed from the User Interface in ePO 10 and the API has now been disabled. Other protection is in place to reduce the likelihood of this being successful through sending a link to a logged in user.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@mcafee.com 3.1 LOW CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N 1.6 1.4
nvd@nist.gov 5.3 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N 3.9 1.4

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-522,CWE-287,

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator *
mcafee epolicy_orchestrator 5.10.0
CVE-2022-1254 MEDIUM

A URL redirection vulnerability in Skyhigh SWG in main releases 10.x prior to 10.2.9, 9.x prior to 9.2.20, 8.x prior to 8.2.27, and 7.x prior to 7.8.2.31, and controlled release 11.x prior to 11.1.3 allows a remote attacker to redirect a user to a malicious website controlled by the attacker. This is possible because SWG incorrectly creates a HTTP redirect response when a user clicks a carefully constructed URL. Following the redirect response, the new request is still filtered by the SWG policy.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7
trellixpsirt@trellix.com 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-601,CWE-601,

Products Affected

Vendor Product Version
mcafee web_gateway *
CVE-2022-1256 HIGH

A local privilege escalation vulnerability in MA for Windows prior to 5.7.6 allows a local low privileged user to gain system privileges through running the repair functionality. Temporary file actions were performed on the local user's %TEMP% directory with System privileges through manipulation of symbolic links.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
psirt@mcafee.com 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: HIGH

Problem Type: CWE-269,CWE-59,

Products Affected

Vendor Product Version
mcafee agent *
CVE-2022-1257 LOW

Insecure storage of sensitive information vulnerability in MA for Linux, macOS, and Windows prior to 5.7.6 allows a local user to gain access to sensitive information through storage in ma.db. The sensitive information has been moved to encrypted database files.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 1.8 3.6
trellixpsirt@trellix.com 6.1 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N 1.8 4.2

CVSS 2.0

Severity: LOW

Problem Type: CWE-922,CWE-922,

Products Affected

Vendor Product Version
mcafee agent *
CVE-2022-1258 MEDIUM

A blind SQL injection vulnerability in the ePolicy Orchestrator (ePO) extension of MA prior to 5.7.6 can be exploited by an authenticated administrator on ePO to perform arbitrary SQL queries in the back-end database, potentially leading to command execution on the server.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 8.4 HIGH CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H 1.7 6.0
nvd@nist.gov 7.2 HIGH CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 1.2 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-89,CWE-89,

Products Affected

Vendor Product Version
mcafee agent *
CVE-2022-1823 MEDIUM

Improper privilege management vulnerability in McAfee Consumer Product Removal Tool prior to version 10.4.128 could allow a local user to modify a configuration file and perform a LOLBin (Living off the land) attack. This could result in the user gaining elevated permissions and being able to execute arbitrary code, through not correctly checking the integrity of the configuration file.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 7.9 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:N/I:H/A:H 1.5 5.8
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-269,NVD-CWE-noinfo,

Products Affected

Vendor Product Version
mcafee consumer_product_removal_tool *
CVE-2022-1824 MEDIUM

An uncontrolled search path vulnerability in McAfee Consumer Product Removal Tool prior to version 10.4.128 could allow a local attacker to perform a sideloading attack by using a specific file name. This could result in the user gaining elevated permissions and being able to execute arbitrary code as there were insufficient checks on the executable being signed by McAfee.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 8.2 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H 1.5 6.0
trellixpsirt@trellix.com 7.9 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:N/I:H/A:H 1.5 5.8

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-427,CWE-427,

Products Affected

Vendor Product Version
mcafee consumer_product_removal_tool *
CVE-2022-2188

Privilege escalation vulnerability in DXL Broker for Windows prior to 6.0.0.280 allows local users to gain elevated privileges by exploiting weak directory controls in the logs directory. This can lead to a denial-of-service attack on the DXL Broker.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H 1.8 3.6
trellixpsirt@trellix.com 6.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H 2.0 4.0

Products Affected

Vendor Product Version
mcafee data_exchange_layer *
CVE-2022-2313

A DLL hijacking vulnerability in the MA Smart Installer for Windows prior to 5.7.7, which allows local users to execute arbitrary code and obtain higher privileges via careful placement of a malicious DLL into the folder from where the Smart installer is being executed.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 8.2 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H 1.5 6.0
nvd@nist.gov 7.3 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H 1.3 5.9

Products Affected

Vendor Product Version
mcafee agent *
CVE-2022-2330

Improper Restriction of XML External Entity Reference vulnerability in DLP Endpoint for Windows prior to 11.9.100 allows a remote attacker to cause the DLP Agent to access a local service that the attacker wouldn't usually have access to via a carefully constructed XML file, which the DLP Agent doesn't parse correctly.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 2.8 3.6
trellixpsirt@trellix.com 6.5 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N 2.8 3.6

Products Affected

Vendor Product Version
mcafee data_loss_prevention_endpoint *
CVE-2022-3338

An External XML entity (XXE) vulnerability in ePO prior to 5.10 Update 14 can lead to an unauthenticated remote attacker to potentially trigger a Server Side Request Forgery attack. This can be exploited by mimicking the Agent Handler call to ePO and passing the carefully constructed XML file through the API.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N 2.2 2.7
trellixpsirt@trellix.com 5.4 MEDIUM CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:N 2.2 2.7

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator *
mcafee epolicy_orchestrator 5.10.0
CVE-2022-3339

A reflected cross-site scripting (XSS) vulnerability in ePO prior to 5.10 Update 14 allows a remote unauthenticated attacker to potentially obtain access to an ePO administrator's session by convincing the authenticated ePO administrator to click on a carefully crafted link. This would lead to limited access to sensitive information and limited ability to alter some information in ePO.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.1 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N 2.8 2.7
trellixpsirt@trellix.com 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N 2.8 2.5

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator *
mcafee epolicy_orchestrator 5.10.0
CVE-2022-37025

An improper privilege management vulnerability in McAfee Security Scan Plus (MSS+) before 4.1.262.1 could allow a local user to modify a configuration file and perform a LOLBin (Living off the land) attack. This could result in the user gaining elevated permissions and being able to execute arbitrary code due to lack of an integrity check of the configuration file.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.8 HIGH CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H 1.8 5.9

Products Affected

Vendor Product Version
mcafee security_scan_plus *
CVE-2022-43751

McAfee Total Protection prior to version 16.0.49 contains an uncontrolled search path element vulnerability due to the use of a variable pointing to a subdirectory that may be controllable by an unprivileged user. This may have allowed the unprivileged user to execute arbitrary code with system privileges.

Products Affected

Vendor Product Version
mcafee total_protection *
CVE-2023-0221

Product security bypass vulnerability in ACC prior to version 8.3.4 allows a locally logged-in attacker with administrator privileges to bypass the execution controls provided by ACC using the utilman program.

Products Affected

Vendor Product Version
mcafee application_and_change_control *
CVE-2023-0978

A command injection vulnerability in Trellix Intelligent Sandbox CLI for version 5.2 and earlier, allows a local user to inject and execute arbitrary operating system commands using specially crafted strings. This vulnerability is due to insufficient validation of arguments that are passed to specific CLI command. The vulnerability allows the attack

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 6.4 MEDIUM CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H 0.5 5.9
nvd@nist.gov 6.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.8 5.9

Products Affected

Vendor Product Version
trellix intelligent_sandbox 5.0
mcafee advanced_threat_defense *
trellix intelligent_sandbox 5.2
CVE-2023-24577

McAfee Total Protection prior to 16.0.50 allows attackers to elevate user privileges due to Improper Link Resolution via registry keys. This could enable a user with lower privileges to execute unauthorized tasks.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N 1.8 3.6

Products Affected

Vendor Product Version
mcafee total_protection *
CVE-2023-24578

McAfee Total Protection prior to 16.0.49 allows attackers to elevate user privileges due to DLL sideloading. This could enable a user with lower privileges to execute unauthorized tasks.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N 1.8 3.6

Products Affected

Vendor Product Version
mcafee total_protection *
CVE-2023-24579

McAfee Total Protection prior to 16.0.51 allows attackers to trick a victim into uninstalling the application via the command prompt.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 5.5 MEDIUM CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H 1.8 3.6

Products Affected

Vendor Product Version
mcafee total_protection *
CVE-2023-25134

McAfee Total Protection prior to 16.0.50 may allow an adversary (with full administrative access) to modify a McAfee specific Component Object Model (COM) in the Windows Registry. This can result in the loading of a malicious payload.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 6.7 MEDIUM CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 0.8 5.9

Products Affected

Vendor Product Version
mcafee total_protection *
CVE-2023-3946

A reflected cross-site scripting (XSS) vulnerability in ePO prior to 5.10 SP1 Update 1allows a remote unauthenticated attacker to potentially obtain access to an ePO administrator's session by convincing the authenticated ePO administrator to click on a carefully crafted link. This would lead to limited access to sensitive information and limited ability to alter some information in ePO.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N 2.8 2.5

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator *
mcafee epolicy_orchestrator 5.10.0
CVE-2023-40352

McAfee Safe Connect before 2.16.1.126 may allow an adversary with system privileges to achieve privilege escalation by loading arbitrary DLLs.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 7.2 HIGH CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H 1.2 5.9

Products Affected

Vendor Product Version
mcafee safe_connect *
CVE-2023-5444

A Cross Site Request Forgery vulnerability in ePolicy Orchestrator prior to 5.10.0 CP1 Update 2 allows a remote low privilege user to successfully add a new user with administrator privileges to the ePO server. This impacts the dashboard area of the user interface. To exploit this the attacker must change the HTTP payload post submission, prior to it reaching the ePO server.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 8.0 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H 2.1 5.9
nvd@nist.gov 8.0 HIGH CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H 2.1 5.9

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator *
mcafee epolicy_orchestrator 5.10.0
CVE-2023-5445

An open redirect vulnerability in ePolicy Orchestrator prior to 5.10.0 CP1 Update 2, allows a remote low privileged user to modify the URL parameter for the purpose of redirecting URL request(s) to a malicious site. This impacts the dashboard area of the user interface. A user would need to be logged into ePO to trigger this vulnerability. To exploit this the attacker must change the HTTP payload post submission, prior to it reaching the ePO server.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
trellixpsirt@trellix.com 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N 2.8 2.5
nvd@nist.gov 5.4 MEDIUM CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N 2.3 2.7

Products Affected

Vendor Product Version
mcafee epolicy_orchestrator *
mcafee epolicy_orchestrator 5.10.0
CVE-2024-25254

SuperScan v4.1 was discovered to contain a buffer overflow via the Hostname/IP parameter.

Products Affected

Vendor Product Version
mcafee superscan 4.1