CVSS: 8.2EPSS: 0%CPEs: 1EXPL: 0CVE-2022-1824 – McAfee MCPR privilege escalation
https://notcve.org/view.php?id=CVE-2022-1824
20 Jun 2022 — An uncontrolled search path vulnerability in McAfee Consumer Product Removal Tool prior to version 10.4.128 could allow a local attacker to perform a sideloading attack by using a specific file name. This could result in the user gaining elevated permissions and being able to execute arbitrary code as there were insufficient checks on the executable being signed by McAfee. Una vulnerabilidad de ruta de búsqueda no controlada en McAfee Consumer Product Removal Tool versiones anteriores a 10.4.128, podría per... • https://service.mcafee.com/?articleId=TS103318&page=shell&shell=article-view • CWE-427: Uncontrolled Search Path Element •
CVSS: 6.1EPSS: 0%CPEs: 5EXPL: 0CVE-2022-1254 – SWG URL redirection vulnerability
https://notcve.org/view.php?id=CVE-2022-1254
20 Apr 2022 — A URL redirection vulnerability in Skyhigh SWG in main releases 10.x prior to 10.2.9, 9.x prior to 9.2.20, 8.x prior to 8.2.27, and 7.x prior to 7.8.2.31, and controlled release 11.x prior to 11.1.3 allows a remote attacker to redirect a user to a malicious website controlled by the attacker. This is possible because SWG incorrectly creates a HTTP redirect response when a user clicks a carefully constructed URL. Following the redirect response, the new request is still filtered by the SWG policy. Una vulner... • https://kc.mcafee.com/corporate/index?page=content&id=SB10381 • CWE-601: URL Redirection to Untrusted Site ('Open Redirect') •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 3CVE-2022-1257 – Improper Verification of Cryptographic Signature by McAfee Agent
https://notcve.org/view.php?id=CVE-2022-1257
14 Apr 2022 — Insecure storage of sensitive information vulnerability in MA for Linux, macOS, and Windows prior to 5.7.6 allows a local user to gain access to sensitive information through storage in ma.db. The sensitive information has been moved to encrypted database files. Una vulnerabilidad de almacenamiento no seguro de información confidencial en MA para Linux, macOS y Windows versiones anteriores a 5.7.6 permite a un usuario local conseguir acceso a información confidencial mediante almacenamiento en ma.db. La inf... • https://packetstorm.news/files/id/203504 • CWE-922: Insecure Storage of Sensitive Information •
CVSS: 8.4EPSS: 0%CPEs: 1EXPL: 0CVE-2022-1258 – SQL injection vulnerability in McAfee Agent's ePO extension
https://notcve.org/view.php?id=CVE-2022-1258
14 Apr 2022 — A blind SQL injection vulnerability in the ePolicy Orchestrator (ePO) extension of MA prior to 5.7.6 can be exploited by an authenticated administrator on ePO to perform arbitrary SQL queries in the back-end database, potentially leading to command execution on the server. Una vulnerabilidad de inyección SQL ciega en la extensión ePolicy Orchestrator (ePO) de MA versiones anteriores a 5.7.6 puede ser explotada por un administrador autenticado en ePO para llevar a cabo consultas SQL arbitrarias en la base de... • https://kc.mcafee.com/corporate/index?page=content&id=SB10382 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-1256 – Improper Privilege Management in McAfee Agent for Windows
https://notcve.org/view.php?id=CVE-2022-1256
14 Apr 2022 — A local privilege escalation vulnerability in MA for Windows prior to 5.7.6 allows a local low privileged user to gain system privileges through running the repair functionality. Temporary file actions were performed on the local user's %TEMP% directory with System privileges through manipulation of symbolic links. Una vulnerabilidad de escalada de privilegios local en MA para Windows versiones anteriores a 5.7.6 permite a un usuario local con pocos privilegios alcanzar privilegios System mediante la ejecuc... • https://kc.mcafee.com/corporate/index?page=content&id=SB10382 • CWE-59: Improper Link Resolution Before File Access ('Link Following') CWE-269: Improper Privilege Management •
CVSS: 5.5EPSS: 0%CPEs: 14EXPL: 0CVE-2022-0861 – ePO XML extended entity vulnerability
https://notcve.org/view.php?id=CVE-2022-0861
23 Mar 2022 — A XML Extended entity vulnerability in McAfee Enterprise ePolicy Orchestrator (ePO) prior to 5.10 Update 13 allows a remote administrator attacker to upload a malicious XML file through the extension import functionality. The impact is limited to some access to confidential information and some ability to alter data. Una vulnerabilidad de tipo XML Extended entity en McAfee Enterprise ePolicy Orchestrator (ePO) versiones anteriores a la Actualización 5.10, permite a un atacante administrador remoto cargar un... • https://kc.mcafee.com/corporate/index?page=content&id=SB10379 • CWE-611: Improper Restriction of XML External Entity Reference •
CVSS: 5.3EPSS: 0%CPEs: 14EXPL: 0CVE-2022-0862 – ePO password change vulnerability
https://notcve.org/view.php?id=CVE-2022-0862
23 Mar 2022 — A lack of password change protection vulnerability in a depreciated API of McAfee Enterprise ePolicy Orchestrator (ePO) prior to 5.10 Update 13 allows a remote attacker to change the password of a compromised session without knowing the existing user's password. This functionality was removed from the User Interface in ePO 10 and the API has now been disabled. Other protection is in place to reduce the likelihood of this being successful through sending a link to a logged in user. Una vulnerabilidad de falt... • https://kc.mcafee.com/corporate/index?page=content&id=SB10379 • CWE-287: Improper Authentication CWE-522: Insufficiently Protected Credentials •
CVSS: 4.7EPSS: 0%CPEs: 14EXPL: 0CVE-2022-0858 – Cross-site scripting vulnerability in ePO
https://notcve.org/view.php?id=CVE-2022-0858
23 Mar 2022 — A cross-site scripting (XSS) vulnerability in McAfee Enterprise ePolicy Orchestrator (ePO) prior to 5.10 Update 13 allows a remote attacker to potentially obtain access to an ePO administrator's session by convincing the attacker to click on a carefully crafted link. This would lead to limited ability to alter some information in ePO due to the area of the User Interface the vulnerability is present in. Una vulnerabilidad de tipo cross-site scripting (XSS) en McAfee Enterprise ePolicy Orchestrator (ePO) ver... • https://kc.mcafee.com/corporate/index?page=content&id=SB10379 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.7EPSS: 0%CPEs: 14EXPL: 0CVE-2022-0859 – ePO database restoration vulnerability
https://notcve.org/view.php?id=CVE-2022-0859
23 Mar 2022 — McAfee Enterprise ePolicy Orchestrator (ePO) prior to 5.10 Update 13 allows a local attacker to point an ePO server to an arbitrary SQL server during the restoration of the ePO server. To achieve this the attacker would have to be logged onto the server hosting the ePO server (restricted to administrators) and to know the SQL server password. McAfee Enterprise ePolicy Orchestrator (ePO) versiones anteriores a la Actualización 5.10 13, permite a un atacante local apuntar un servidor ePO a un servidor SQL arb... • https://kc.mcafee.com/corporate/index?page=content&id=SB10379 • CWE-522: Insufficiently Protected Credentials •
CVSS: 6.1EPSS: 0%CPEs: 14EXPL: 0CVE-2022-0857 – ePO Reflected Cross-site scripting vulnerability
https://notcve.org/view.php?id=CVE-2022-0857
23 Mar 2022 — A reflected cross-site scripting (XSS) vulnerability in McAfee Enterprise ePolicy Orchestrator (ePO) prior to 5.10 Update 13 allows a remote attacker to potentially obtain access to an ePO administrator's session by convincing the attacker to click on a carefully crafted link. This would lead to limited access to sensitive information and limited ability to alter some information in ePO due to the area of the User Interface the vulnerability is present in. Una vulnerabilidad de tipo cross-site scripting (XS... • https://kc.mcafee.com/corporate/index?page=content&id=SB10379 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •