Agent Security Vulnerabilities and Issues — Agent CVE List

Lucene search

McafeeAgent

8 matches found

CVE•added 2019/02/27 11:29 p.m.•779 views

CVE-2019-1559

If an application encounters a fatal protocol error and then calls SSL_shutdown() twice (once to send a close_notify, and once to receive one) then OpenSSL can respond differently to the calling application if a 0 byte record is received with invalid padding compared to if a 0 byte record is receiv...

5.9CVSS6.3AI score0.04426EPSS

CVE•added 2021/01/18 1:15 p.m.•56 views

CVE-2020-7343

Missing Authorization vulnerability in McAfee Agent (MA) for Windows prior to 5.7.1 allows local users to block McAfee product updates by manipulating a directory used by MA for temporary files. The product would continue to function with out-of-date detection files.

5.5CVSS5.3AI score0.0004EPSS

CVE•added 2008/03/17 5:44 p.m.•53 views

CVE-2008-1357

Format string vulnerability in the logDetail function of applib.dll in McAfee Common Management Agent (CMA) 3.6.0.574 (Patch 3) and earlier, as used in ePolicy Orchestrator 4.0.0 build 1015, allows remote attackers to cause a denial of service (crash) or execute arbitrary code via format string spe...

5.4CVSS7.7AI score0.27884EPSS

CVE•added 2016/04/08 3:59 p.m.•47 views

CVE-2016-3984

The McAfee VirusScan Console (mcconsol.exe) in McAfee Active Response (MAR) before 1.1.0.161, Agent (MA) 5.x before 5.0.2 Hotfix 1110392 (5.0.2.333), Data Exchange Layer 2.x (DXL) before 2.0.1.140.1, Data Loss Prevention Endpoint (DLPe) 9.3 before Patch 6 and 9.4 before Patch 1 HF3, Device Control ...

5.1CVSS5AI score0.0029EPSS

CVE•added 2013/10/05 10:55 a.m.•43 views

CVE-2013-3627

FrameworkService.exe in McAfee Framework Service in McAfee Managed Agent (MA) before 4.5.0.1927 and 4.6 before 4.6.0.3258 allows remote attackers to cause a denial of service (service crash) via a malformed HTTP request.

5CVSS6.6AI score0.00455EPSS

CVE•added 2020/03/12 11:15 a.m.•38 views

CVE-2020-7253

Improper access control vulnerability in masvc.exe in McAfee Agent (MA) prior to 5.6.4 allows local users with administrator privileges to disable self-protection via a McAfee supplied command-line utility.

5.7CVSS4.8AI score0.00105EPSS

CVE•added 2017/03/14 10:59 p.m.•36 views

CVE-2015-8987

Man-in-the-middle (MitM) attack vulnerability in non-Mac OS agents in McAfee (now Intel Security) Agent (MA) 4.8.0 patch 2 and earlier allows attackers to make a McAfee Agent talk with another, possibly rogue, ePO server via McAfee Agent migration to another ePO server.

5.3CVSS5.2AI score0.00145EPSS

CVE•added 2019/02/28 4:0 p.m.•36 views

CVE-2019-3598

Buffer Access with Incorrect Length Value in McAfee Agent (MA) 5.x allows remote unauthenticated users to potentially cause a denial of service via specifically crafted UDP packets.

5.3CVSS5.3AI score0.00372EPSS