RSS   Vulnerabilities for 'Database security'   RSS

2021-06-03
 
CVE-2021-31830

CWE-79
 

 
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in McAfee Database Security (DBSec) prior to 4.8.2 allows an administrator to embed JavaScript code when configuring the name of a database to be monitored. This would be triggered when any authorized user logs into the DBSec interface and opens the properties configuration page for this database.

 
2020-12-10
 
CVE-2020-7339

CWE-327
 

 
Use of a Broken or Risky Cryptographic Algorithm vulnerability in McAfee Database Security Server and Sensor prior to 4.8.0 in the form of a SHA1 signed certificate that would allow an attacker on the same local network to potentially intercept communication between the Server and Sensors.

 
2019-03-12
 
CVE-2019-3615

CWE-255
 

 
Data Leakage Attacks vulnerability in the web interface in McAfee Database Security prior to the 4.6.6 March 2019 update allows local users to expose passwords via incorrectly auto completing password fields in the admin browser login screen.

 

 >>> Vendor: Mcafee 136 Products
Virusscan
Webshield smtp
Remote desktop 32
E-business server
Asap virusscan
Epolicy orchestrator
Entercept agent
Antivirus engine
Freescan
Security installer control system
Internet security suite
Intrushield security management system
Epolicy orchestrator agent
Antispyware
Mcinsctl.dll
Virusscan security center
Common management agent
Virusscan enterprise
Virex
Asset manager
Personal firewall plus
Privacy service
Quickclean
Security center
Spamkiller
Wireless home network security
Enterprise security manager
Scan engine
Protectionpilot
Network agent
Endpoint security
Neotrace
Visual trace
Securitycenter agent
Internet security
Agent
CMA
Mcafee framework
Encrypted usb manager
Safeboot device encryption
Active virus defense
Active virusscan
Email gateway
Securityshield for email servers
Securityshield for microsoft isa server
Securityshield for microsoft sharepoint
Total protection
Total protection for endpoint
Virusscan commandline
Virusscan plus
Virusscan usb
Groupshield
Gateway
Smartfilter
Email and web security appliance
Intrushield network security manager
Anti-virus plus
Web gateway
Secure mail
Unified threat management firewall firmware
Data loss prevention
Saas endpoint protection
Linuxshield
Host data loss prevention
Firewall reporter
Email and web security
Enterprise mobility manager
Enterprise mobility manager agent
Application control
Change control
Mcafee virtual technician
Epo mcafee virtual technician
Total protection 2010
Vulnerability manager
Superscan
Cloud identity manager
Cloud single sign on
Network security manager
Network data loss prevention
Endpoint encryption for files and folders
Mcafee file and removable media protection
File and removable media protection
Data loss prevention endpoint
Mcafee agent
Advanced threat defense
Epo deep command
Threat intelligence exchange
Enterprise security manager/log manager
Enterprise security manager/receiver
Mcafee enterprise security manager
File lock
Livesafe
Active response
Data exchange layer
Host intrusion prevention
Smartfilter administration
Security information and event management
Security scan plus
Host intrusion prevention services
Cloud analysis and deconstructive services
See all Products for Vendor Mcafee


Copyright 2024, cxsecurity.com

 

Back to Top