Mcafee Virusscan Enterprise — known CVE vulnerabilities
Every CVE whose affected-product data names Mcafee Virusscan Enterprise, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (29)
CVE-2009-5118 — CVSS 9.3 (critical): Untrusted search path vulnerability in McAfee VirusScan Enterprise before 8.7i allows local users to gain privileges via a Trojan horse DLL…
CVE-2020-7266 — CVSS 8.8 (high): Privilege Escalation vulnerability in McAfee VirusScan Enterprise (VSE) for Windows prior to 8.8 Patch 14 Hotfix 116778 allows local users…
CVE-2020-7267 — CVSS 8.8 (high): Privilege Escalation vulnerability in McAfee VirusScan Enterprise (VSE) for Linux prior to 2.0.3 Hotfix 2635000 allows local users to…
CVE-2016-8023 — CVSS 8.1 (high): Authentication bypass by assumed-immutable data vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier)…
CVE-2016-8024 — CVSS 8.1 (high): Improper neutralization of CRLF sequences in HTTP headers vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and…
CVE-2016-8020 — CVSS 8.0 (high): Improper control of generation of code vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier) allows remote…
CVE-2007-2152 — CVSS 7.9 (high): Buffer overflow in the On-Access Scanner in McAfee VirusScan Enterprise before 8.0i Patch 12 allows user-assisted remote attackers to…
CVE-2020-7280 — CVSS 7.8 (high): Privilege Escalation vulnerability during daily DAT updates when using McAfee Virus Scan Enterprise (VSE) prior to 8.8 Patch 15 allows…
CVE-2009-1348 — CVSS 7.6 (high): The AV engine before DAT 5600 in McAfee VirusScan, Total Protection, Internet Security, SecurityShield for Microsoft ISA Server, Security…
CVE-2016-8022 — CVSS 7.5 (high): Authentication bypass by spoofing vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier) allows remote…
CVE-2007-1538 — CVSS 7.5 (high): McAfee VirusScan Enterprise 8.5.0.i uses insecure permissions for certain Windows Registry keys, which allows local users to bypass local…
CVE-2005-4505 — CVSS 7.2 (high): Unquoted Windows search path vulnerability in McAfee VirusScan Enterprise 8.0i (patch 11) and CMA 3.5 (patch 5) might allow local users to…
CVE-2019-3585 — CVSS 7.0 (high): Privilege Escalation vulnerability in Microsoft Windows client (McTray.exe) in McAfee VirusScan Enterprise (VSE) 8.8 prior to Patch 14 may…
CVE-2018-6674 — CVSS 6.8 (medium): Privilege Escalation vulnerability in Microsoft Windows client (McTray.exe) in McAfee VirusScan Enterprise (VSE) 8.8 prior to Patch 13…
CVE-2020-7337 — CVSS 6.5 (medium): Incorrect Permission Assignment for Critical Resource vulnerability in McAfee VirusScan Enterprise (VSE) prior to 8.8 Patch 16 allows local…
CVE-2010-3496 — CVSS 6.4 (medium): McAfee VirusScan Enterprise 8.5i and 8.7i does not properly interact with the processing of hcp:// URLs by the Microsoft Help and Support…
CVE-2019-3588 — CVSS 6.3 (medium): Privilege Escalation vulnerability in Microsoft Windows client (McTray.exe) in McAfee VirusScan Enterprise (VSE) 8.8 prior to Patch 14 may…
CVE-2016-8019 — CVSS 6.1 (medium): Cross-site scripting (XSS) vulnerability in attributes in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier) allows…
CVE-2016-3984 — CVSS 5.1 (medium): The McAfee VirusScan Console (mcconsol.exe) in McAfee Active Response (MAR) before 1.1.0.161, Agent (MA) 5.x before 5.0.2 Hotfix 1110392…
CVE-2016-8021 — CVSS 5.0 (medium): Improper verification of cryptographic signature vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier)…
CVE-2016-8030 — CVSS 4.3 (medium): A memory corruption vulnerability in Scriptscan COM Object in McAfee VirusScan Enterprise 8.8 Patch 8 and earlier allows remote attackers…
CVE-2016-8017 — CVSS 4.1 (medium): Special element injection vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier) allows authenticated remote…
CVE-2006-4886 — CVSS 3.7 (low): The VirusScan On-Access Scan component in McAfee VirusScan Enterprise 7.1.0 and Scan Engine 4.4.00 allows local privileged users to bypass…
CVE-2016-8016 — CVSS 3.4 (low): Information exposure in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier) allows authenticated remote attackers to…
CVE-2016-4534 — CVSS 3.0 (low): The McAfee VirusScan Console (mcconsol.exe) in McAfee VirusScan Enterprise 8.8.0 before Hotfix 1123565 (8.8.0.1546) on Windows allows local…
CVE-2015-8577 — CVSS 2.6 (low): The Buffer Overflow Protection (BOP) feature in McAfee VirusScan Enterprise before 8.8 Patch 6 allocates memory with Read, Write, Execute…
CVE-2010-5143 — CVSS 2.6 (low): McAfee VirusScan Enterprise before 8.8 allows local users to disable the product by leveraging administrative privileges to execute an…