Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

McAfee — Vulnerabilities & Security Advisories 106

Browse all 106 CVE security advisories affecting McAfee. AI-powered Chinese analysis, POCs, and references for each vulnerability.

McAfee operates as a prominent cybersecurity vendor, primarily providing endpoint protection and threat intelligence services to enterprise and consumer markets. Its software portfolio, encompassing antivirus solutions and network security appliances, has historically been susceptible to critical flaws, including remote code execution, cross-site scripting, and privilege escalation vulnerabilities. These defects often stem from complex codebases and legacy components within its extensive suite of security tools. Notable incidents include significant data breaches affecting customer information and internal systems, highlighting risks associated with centralized security infrastructure. With over one hundred recorded Common Vulnerabilities and Exposures, the company faces ongoing scrutiny regarding its patch management and secure development practices. These recurring issues underscore the challenges inherent in maintaining robust security postures for large-scale, widely deployed enterprise software, necessitating rigorous third-party audits and continuous vulnerability remediation to mitigate potential exploitation by threat actors.

Top products by McAfee: Network Security Management (NSM) Advanced Threat Defense (ATD) McAfee Web Gateway (MWG) Network Data Loss Prevention (NDLP) DLP ePO extension ePolicy Orchestrator (ePO) True Key McAfee Agent (MA) for Linux Network Data Loss Prevention Live Safe McAfee Total Protection (MTP) True Key (TK) Data Loss Prevention(DLP) Application and Change Control ePolicy Orchistrator (ePO) Data Loss Prevention (DLP) ePO extension Data Loss Prevention Endpoint (DLPe) File & Removable Media Protection (FRP) Database Security McAfee Total Protection for Windows VirusScan Enterprise McAfee Email Gateway (MEG) Client Proxy (MCP) Data Loss Prevention McAfee WebAdvisor Web Gateway(MWG) Total Protection (MTP) MVision Endpoint McAfee Web Gateway McAfee Agent (MA) non-Windows non-Windows versions
CVE IDTitleCVSSSeverityPublished
CVE-2022-0280 McAfee Total Protection (MTP) - File Deletion vulnerability — McAfee Total Protection for WindowsCWE-367 7.5 High2022-03-10
CVE-2022-0815 McAfee WebAdvisor - Extension Fingerprinting vulnerability — McAfee WebAdvisorCWE-668 6.5 Medium2022-03-10
CVE-2021-31848 Data Loss Prevention (DLP) ePO extension - Cross site scripting (XSS) — Data Loss Prevention (DLP) ePO extensionCWE-79 8.4 High2021-11-01
CVE-2021-31849 Data Loss Prevention (DLP) ePO extension - SQL injection — Data Loss Prevention (DLP) ePO extensionCWE-89 8.4 High2021-11-01
CVE-2021-23877 McAfee Total Protection (MTP) - Privilege Escalation vulnerability — McAfee Total Protection (MTP)CWE-269 6.7 Medium2021-10-26
CVE-2020-7336 Network Security Management (NSM) - Cross Site Request Forgery vulnerability — Network Security Management (NSM)CWE-352 6.6 Medium2021-01-05
CVE-2020-7339 Database Security(DBS)-Use of a Broken or Risky Cryptographic Algorithm — Database SecurityCWE-327 6.3 Medium2020-12-09
CVE-2020-7317 ePolicy Orchistrator (ePO) - Cross-Site Scripting vulnerability — ePolicy Orchistrator (ePO)CWE-79 4.6 Medium2020-10-14
CVE-2020-7318 ePolicy Orchistrator (ePO) - Cross-Site Scripting vulnerability — ePolicy Orchistrator (ePO)CWE-79 4.6 Medium2020-10-14
CVE-2020-7316 File and Removable Media Protection update fixes one vulnerability — File & Removable Media Protection (FRP)CWE-428 6.6 Medium2020-10-07
CVE-2020-7268 McAfee Email Gateway (MEG) - Path Traversal vulnerability — McAfee Email Gateway (MEG)CWE-22 4.3 Medium2020-09-16
CVE-2020-7297 Web Gateway (MWG) - Privilege Escalation vulnerability — McAfee Web Gateway (MWG)CWE-287 5.7 Medium2020-09-15
CVE-2020-7296 Web Gateway (MWG) - Privilege Escalation vulnerability — McAfee Web Gateway (MWG)CWE-287 5.7 Medium2020-09-15
CVE-2020-7295 Web Gateway (MWG) - Privilege Escalation vulnerability — McAfee Web Gateway (MWG)CWE-287 3.5 Low2020-09-15
CVE-2020-7294 Web Gateway (MWG) - Privilege Escalation vulnerability — McAfee Web Gateway (MWG)CWE-287 4.6 Medium2020-09-15
CVE-2020-7293 Web Gateway (MWG) - Privilege Escalation vulnerability — McAfee Web Gateway (MWG)CWE-287 9.0 Critical2020-09-15
CVE-2020-7307 DLP for Mac - Unprotected Storage of Credentials — Data Loss Prevention(DLP)CWE-522 5.2 Medium2020-08-13
CVE-2020-7306 DLP for Mac - Unprotected Storage of Credentials — Data Loss Prevention(DLP)CWE-522 5.2 Medium2020-08-13
CVE-2020-7305 DLP ePO extension - Privilege escalation — DLP ePO extensionCWE-269 6.7 Medium2020-08-13
CVE-2020-7304 DLP ePO extension - Cross-site request forgery — DLP ePO extensionCWE-352 7.6 High2020-08-13
CVE-2020-7303 DLP ePO extension - Cross-site scripting — DLP ePO extensionCWE-79 4.1 Medium2020-08-13
CVE-2020-7302 DLP ePO extension - Unrestricted Upload of File with Dangerous Type — DLP ePO extensionCWE-434 5.4 Medium2020-08-13
CVE-2020-7301 DLP ePO extension - Cross site scripting — DLP ePO extensionCWE-79 4.1 Medium2020-08-12
CVE-2020-7300 DLP ePO extension - Improper Authorization — DLP ePO extensionCWE-863 4.6 Medium2020-08-12
CVE-2020-7298 Total Protection (MTP) - Unexpected behavior violation — McAfee Total Protection (MTP) 7.5 High2020-08-05
CVE-2020-7292 Web Gateway (MWG) - Inappropriate Encoding for output context — McAfee Web Gateway (MWG)CWE-838 4.3 Medium2020-07-15
CVE-2020-7284 Network Security Management (NSM) - Exposure of Sensitive Information — Network Security Management (NSM)CWE-200 8.6 High2020-07-03
CVE-2020-7256 Network Security Management (NSM) - Cross site scripting vulnerability — Network Security Management (NSM)CWE-79 4.8 Medium2020-03-18
CVE-2020-7258 Network Security Management (NSM) - Cross site scripting vulnerability — Network Security Management (NSM)CWE-79 4.8 Medium2020-03-18
CVE-2019-3654 Client Proxy (MCP) - Authentication Bypass vulnerability — Client Proxy (MCP) 5.3 Medium2019-11-22

This page lists every published CVE security advisory associated with McAfee. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.