Mcafee Web Gateway

Do you want an email whenever new security vulnerabilities are reported in Mcafee Web Gateway?

By the Year

In 2024 there have been 0 vulnerabilities in Mcafee Web Gateway . Mcafee Web Gateway did not have any published security vulnerabilities last year.

Year	Vulnerabilities	Average Score
2024	0	0.00
2023	0	0.00
2022	0	0.00
2021	1	7.20
2020	0	0.00
2019	1	7.50
2018	3	9.33

It may take a day or so for new Mcafee Web Gateway vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Mcafee Web Gateway Security Vulnerabilities

On Netshield NANO 25 10.2.18 devices, /usr/local/webmin/System/manual_ping.cgi

CVE-2021-3149 7.2 - High - February 22, 2021

On Netshield NANO 25 10.2.18 devices, /usr/local/webmin/System/manual_ping.cgi allows OS command injection (after authentication by the attacker) because the system C library function is used unsafely.

Shell injection

Improper input validation in the proxy component of McAfee Web Gateway 7.8.2.0 and later

CVE-2019-3581 7.5 - High - January 09, 2019

Improper input validation in the proxy component of McAfee Web Gateway 7.8.2.0 and later allows remote attackers to cause a denial of service via a crafted HTTP request parameter.

Improper Input Validation

Directory Traversal vulnerability in the administrative user interface in McAfee Web Gateway (MWG) MWG 7.8.1.x

CVE-2018-6677 9.1 - Critical - July 23, 2018

Directory Traversal vulnerability in the administrative user interface in McAfee Web Gateway (MWG) MWG 7.8.1.x allows authenticated administrator users to gain elevated privileges via unspecified vectors.

Directory traversal

Configuration/Environment manipulation vulnerability in the administrative interface in McAfee Web Gateway (MWG) MWG 7.8.1.x

CVE-2018-6678 9.1 - Critical - July 23, 2018

Configuration/Environment manipulation vulnerability in the administrative interface in McAfee Web Gateway (MWG) MWG 7.8.1.x allows authenticated administrator users to execute arbitrary commands via unspecified vectors.

Authentication Bypass vulnerability in the administrative user interface in McAfee Web Gateway 7.8.1.0 through 7.8.1.5

CVE-2018-6667 9.8 - Critical - June 26, 2018

Authentication Bypass vulnerability in the administrative user interface in McAfee Web Gateway 7.8.1.0 through 7.8.1.5 allows remote attackers to execute arbitrary code via Java management extensions (JMX).

authentification

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Mcafee Web Gateway or by McAfee? Click the Watch button to subscribe.

McAfee
Vendor

Mcafee Web Gateway
Product

Mcafee Web Gateway

By the Year

Recent Mcafee Web Gateway Security Vulnerabilities

On Netshield NANO 25 10.2.18 devices, /usr/local/webmin/System/manual_ping.cgi CVE-2021-3149 7.2 - High - February 22, 2021

Improper input validation in the proxy component of McAfee Web Gateway 7.8.2.0 and later CVE-2019-3581 7.5 - High - January 09, 2019

Directory Traversal vulnerability in the administrative user interface in McAfee Web Gateway (MWG) MWG 7.8.1.x CVE-2018-6677 9.1 - Critical - July 23, 2018

Configuration/Environment manipulation vulnerability in the administrative interface in McAfee Web Gateway (MWG) MWG 7.8.1.x CVE-2018-6678 9.1 - Critical - July 23, 2018

Authentication Bypass vulnerability in the administrative user interface in McAfee Web Gateway 7.8.1.0 through 7.8.1.5 CVE-2018-6667 9.8 - Critical - June 26, 2018