Mcafee Security Vulnerabilities (CVEs)
Track 27 security vulnerabilities affecting Mcafee products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.
SuperScan v4.1 contains a buffer overflow vulnerability in the Hostname/IP parameter that allows attackers to execute arbitrary code. This affects all...
Nov 11, 2024A Cross-Site Request Forgery (CSRF) vulnerability in ePolicy Orchestrator (ePO) allows low-privileged remote users to add new administrator accounts b...
Nov 17, 2023This vulnerability in McAfee Safe Connect allows attackers with existing system privileges to escalate their privileges by loading arbitrary DLLs. It ...
Aug 21, 2023A local privilege escalation vulnerability in McAfee Consumer Product Removal Tool allows authenticated local users to modify configuration files and ...
Jun 20, 2022This CVE describes a local command injection vulnerability in McAfee Agent for Windows that allows authenticated local users to execute arbitrary code...
Jan 19, 2022This CVE describes a local privilege escalation vulnerability in McAfee Agent where a low-privileged user can create malicious directories and files t...
Jan 19, 2022This vulnerability allows local users to execute arbitrary code with elevated privileges by placing a malicious DLL in a folder that McAfee Drive Encr...
Nov 10, 2021This is a cross-site scripting (XSS) vulnerability in McAfee Data Loss Prevention ePO extension that allows remote attackers to hijack active administ...
Nov 1, 2021A DLL sideloading vulnerability in McAfee Agent for Windows allows local users to execute arbitrary code with SYSTEM privileges by placing an unsigned...
Sep 22, 2021A local buffer overflow vulnerability in McAfee Data Loss Prevention Endpoint for Windows allows attackers to execute arbitrary code with elevated pri...
Sep 17, 2021This OpenSSL vulnerability allows attackers to cause buffer overruns when applications directly construct ASN.1 strings without proper NUL termination...
Aug 24, 2021This vulnerability allows authenticated MVISION EDR administrators to execute arbitrary PowerShell commands on client systems through the 'execute rea...
Jun 29, 2021This vulnerability allows authenticated local attackers on Windows systems with McAfee Agent to perform DLL preloading attacks using unsigned DLLs, le...
Jun 10, 2021A memory corruption vulnerability in McAfee GetSusp's driver file component allows local programs to trigger a buffer overflow, potentially executing ...
Jun 9, 2021This vulnerability allows remote unauthenticated attackers to execute arbitrary code on McAfee Database Security servers by sending malicious Java ser...
Jun 2, 2021This vulnerability allows local users on Linux systems running McAfee Endpoint Security to escalate privileges to root/admin level through a race cond...
May 12, 2021This CVE describes a local privilege escalation vulnerability in McAfee Total Protection's File Lock component. A local user can manipulate symbolic l...
May 12, 2021This CVE describes a local privilege escalation vulnerability in McAfee DLP Endpoint for Windows. A low-privileged local attacker can write to arbitra...
Apr 15, 2021This OpenSSL vulnerability allows certificate chain validation to be bypassed when the X509_V_FLAG_X509_STRICT flag is explicitly set. It affects appl...
Mar 25, 2021A local privilege escalation vulnerability in McAfee Data Loss Prevention (DLP) for Windows allows low-privileged attackers to load arbitrary DLLs via...
Mar 23, 2021This CVE describes an authenticated privilege escalation vulnerability in McAfee Web Gateway (MWG) that allows authenticated users to gain elevated pr...
Feb 17, 2021This OpenSSL vulnerability involves integer overflow in cryptographic functions (EVP_CipherUpdate, EVP_EncryptUpdate, EVP_DecryptUpdate) when processi...
Feb 16, 2021This vulnerability allows a local user on a Windows system to bypass security controls in McAfee Total Protection, gaining SYSTEM-level privileges to ...
Feb 10, 2021This vulnerability allows a local user on a Windows system to escalate privileges to SYSTEM level and delete arbitrary files, potentially causing deni...
Feb 10, 2021This vulnerability allows local administrators on Windows systems to prevent proper installation of McAfee Endpoint Security (ENS) files during clean ...
Feb 10, 2021This vulnerability allows a local user on a Windows system to view McAfee Endpoint Security settings and credentials stored in clear text in process m...
Feb 10, 2021This vulnerability allows authenticated users with low privileges in McAfee Web Gateway to change the system's root password due to improper access co...
Sep 15, 2020Why Monitor Mcafee Security Vulnerabilities?
Real-time CVE tracking: Our automated system monitors 27+ known vulnerabilities affecting Mcafee products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.
Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Mcafee packages in under 60 seconds. No agents required - completely agentless scanning that works across Mcafee deployments.
Free vulnerability database: Access detailed information about every Mcafee CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.
🚀 Get Started in 60 Seconds
- Register free account & add your servers
- Run one-time scan or schedule automatic monitoring (every 1-24 hours)
- Receive instant alerts when new Mcafee CVEs affect your systems
- Access dashboard with severity breakdown & fix instructions
