threat
engine
.sh
Back
·
··:··
Home
/
Product
/
mcafee virusscan enterprise
Product
mcafee virusscan enterprise
30 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
Sort
Newest first
Oldest first
Highest CVSS
Lowest CVSS
Min CVSS
Any
4.0+
7.0+ (High)
9.0+ (Critical)
Published since
Reset
CVE-2020-7337
< 8.8
Incorrect Permission Assignment for Critical Resource vulnerability in McAfee VirusScan Enterprise (VSE) prior to 8.8 Patch 16 all
6.5
MEDIUM
CVE-2020-7280
all versions
Privilege Escalation vulnerability during daily DAT updates when using McAfee Virus Scan Enterprise (VSE) prior to 8.8 Patch 15 al
7.8
HIGH
CVE-2019-3588
all versions
Privilege Escalation vulnerability in Microsoft Windows client (McTray.exe) in McAfee VirusScan Enterprise (VSE) 8.8 prior to Patc
6.3
MEDIUM
CVE-2019-3585
all versions
Privilege Escalation vulnerability in Microsoft Windows client (McTray.exe) in McAfee VirusScan Enterprise (VSE) 8.8 prior to Patc
7.0
HIGH
CVE-2020-7267
all versions
Privilege Escalation vulnerability in McAfee VirusScan Enterprise (VSE) for Linux prior to 2.0.3 Hotfix 2635000 allows local users
8.8
HIGH
CVE-2020-7266
>= 1.9.0 and < 1.9.2
Privilege Escalation vulnerability in McAfee VirusScan Enterprise (VSE) for Windows prior to 8.8 Patch 14 Hotfix 116778 allows loc
8.8
HIGH
CVE-2018-6674
all versions
Privilege Escalation vulnerability in Microsoft Windows client (McTray.exe) in McAfee VirusScan Enterprise (VSE) 8.8 prior to Patc
6.8
MEDIUM
CVE-2017-4028
<= 8.8
Maliciously misconfigured registry vulnerability in all Microsoft Windows products in McAfee consumer and corporate products allow
5.0
MEDIUM
CVE-2016-8030
<= 8.8.0
A memory corruption vulnerability in Scriptscan COM Object in McAfee VirusScan Enterprise 8.8 Patch 8 and earlier allows remote at
4.3
MEDIUM
CVE-2016-8025
<= 2.0.3
SQL injection vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier) allows remote authenticated us
6.2
MEDIUM
CVE-2016-8024
<= 2.0.3
Improper neutralization of CRLF sequences in HTTP headers vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3
8.1
HIGH
CVE-2016-8023
<= 2.0.3
Authentication bypass by assumed-immutable data vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earli
8.1
HIGH
CVE-2016-8022
<= 2.0.3
Authentication bypass by spoofing vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier) allows rem
7.5
HIGH
CVE-2016-8021
<= 2.0.3
Improper verification of cryptographic signature vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earl
5.0
MEDIUM
CVE-2016-8020
<= 2.0.3
Improper control of generation of code vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier) allow
8.0
HIGH
CVE-2016-8019
<= 2.0.3
Cross-site scripting (XSS) vulnerability in attributes in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier) all
6.1
MEDIUM
CVE-2016-8018
<= 2.0.3
Cross-site request forgery (CSRF) vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier) allows aut
4.3
MEDIUM
CVE-2016-8017
<= 2.0.3
Special element injection vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier) allows authenticat
4.1
MEDIUM
CVE-2016-8016
<= 2.0.3
Information exposure in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier) allows authenticated remote attackers
3.4
LOW
CVE-2016-4534
all versions
The McAfee VirusScan Console (mcconsol.exe) in McAfee VirusScan Enterprise 8.8.0 before Hotfix 1123565 (8.8.0.1546) on Windows all
3.0
LOW
CVE-2016-3984
<= 8.8.0
The McAfee VirusScan Console (mcconsol.exe) in McAfee Active Response (MAR) before 1.1.0.161, Agent (MA) 5.x before 5.0.2 Hotfix 1
5.1
MEDIUM
CVE-2015-8577
<= 8.8.0
The Buffer Overflow Protection (BOP) feature in McAfee VirusScan Enterprise before 8.8 Patch 6 allocates memory with Read, Write,
CVE-2010-5143
<= 8.7.0
McAfee VirusScan Enterprise before 8.8 allows local users to disable the product by leveraging administrative privileges to execut
CVE-2010-3496
all versions
McAfee VirusScan Enterprise 8.5i and 8.7i does not properly interact with the processing of hcp:// URLs by the Microsoft Help and
CVE-2009-5118
<= 8.5i
Untrusted search path vulnerability in McAfee VirusScan Enterprise before 8.7i allows local users to gain privileges via a Trojan
CVE-2009-1348
all versions
The AV engine before DAT 5600 in McAfee VirusScan, Total Protection, Internet Security, SecurityShield for Microsoft ISA Server, S
CVE-2007-2152
<= 8.0i
Buffer overflow in the On-Access Scanner in McAfee VirusScan Enterprise before 8.0i Patch 12 allows user-assisted remote attackers
CVE-2007-1538
all versions
McAfee VirusScan Enterprise 8.5.0.i uses insecure permissions for certain Windows Registry keys, which allows local users to bypas
CVE-2006-4886
all versions
The VirusScan On-Access Scan component in McAfee VirusScan Enterprise 7.1.0 and Scan Engine 4.4.00 allows local privileged users t
CVE-2005-4505
all versions
Unquoted Windows search path vulnerability in McAfee VirusScan Enterprise 8.0i (patch 11) and CMA 3.5 (patch 5) might allow local
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin