Mcafee

Web Gateway

41 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2016-1840

Exploit
  • EPSS 2.14%
  • Published 20.05.2016 10:59:54
  • Last modified 12.04.2025 10:46:40

Heap-based buffer overflow in the xmlFAParsePosCharGroup function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to execute arbitrary code or cause...

5.5

CVE-2016-1839

Exploit
  • EPSS 10.77%
  • Published 20.05.2016 10:59:53
  • Last modified 12.04.2025 10:46:40

The xmlDictAddString function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service (heap-based buffer over-read) via a craft...

5.5

CVE-2016-1838

Exploit
  • EPSS 10.65%
  • Published 20.05.2016 10:59:52
  • Last modified 12.04.2025 10:46:40

The xmlPArserPrintFileContextInternal function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service (heap-based buffer over-...

5.5

CVE-2016-1837

Exploit
  • EPSS 0.79%
  • Published 20.05.2016 10:59:51
  • Last modified 12.04.2025 10:46:40

Multiple use-after-free vulnerabilities in the (1) htmlPArsePubidLiteral and (2) htmlParseSystemiteral functions in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allow remot...

5.5

CVE-2016-1836

  • EPSS 1.15%
  • Published 20.05.2016 10:59:50
  • Last modified 12.04.2025 10:46:40

Use-after-free vulnerability in the xmlDictComputeFastKey function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service via ...

9.3

CVE-2016-1834

Exploit
  • EPSS 2.37%
  • Published 20.05.2016 10:59:48
  • Last modified 12.04.2025 10:46:40

Heap-based buffer overflow in the xmlStrncat function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to execute arbitrary code or cause a denial of...

5.5

CVE-2016-1833

Exploit
  • EPSS 1.21%
  • Published 20.05.2016 10:59:47
  • Last modified 12.04.2025 10:46:40

The htmlCurrentChar function in libxml2 before 2.9.4, as used in Apple iOS before 9.3.2, OS X before 10.11.5, tvOS before 9.2.1, and watchOS before 2.2.1, allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafte...

8.1

CVE-2016-1762

Exploit
  • EPSS 8.58%
  • Published 24.03.2016 01:59:30
  • Last modified 12.04.2025 10:46:40

The xmlNextChar function in libxml2 before 2.9.4 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted XML document.

4

CVE-2014-6064

  • EPSS 0.25%
  • Published 02.09.2014 14:55:03
  • Last modified 12.04.2025 10:46:40

The Accounts tab in the administrative user interface in McAfee Web Gateway (MWG) before 7.3.2.9 and 7.4.x before 7.4.2 allows remote authenticated users to obtain the hashed user passwords via unspecified vectors.

4

CVE-2014-2535

  • EPSS 1.31%
  • Published 18.03.2014 17:04:18
  • Last modified 12.04.2025 10:46:40

Directory traversal vulnerability in McAfee Web Gateway (MWG) 7.4.x before 7.4.1, 7.3.x before 7.3.2.6, and 7.2.0.9 and earlier allows remote authenticated users to read arbitrary files via a crafted request to the web filtering port.