Mcafee Livesafe vulnerabilities
3 known vulnerabilities affecting mcafee/livesafe.
Total CVEs
3
CISA KEV
0
Public exploits
3
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2017-3897P2CRITICALCVSS 9.8PoC≤ 16.0.22017-09-01
CVE-2017-3897 [CRITICAL] CWE-94 CVE-2017-3897: A Code Injection vulnerability in the non-certificate-based authentication mechanism in McAfee Live
A Code Injection vulnerability in the non-certificate-based authentication mechanism in McAfee Live Safe versions prior to 16.0.3 and McAfee Security Scan Plus (MSS+) versions prior to 3.11.599.3 allows network attackers to perform a malicious file execution via a HTTP backend-response.
nvd
CVE-2016-4535P3HIGHCVSS 7.5PoCv14.02016-05-05
CVE-2016-4535 [HIGH] CWE-20 CVE-2016-4535: Integer signedness error in the AV engine before DAT 8145, as used in McAfee LiveSafe 14.0, allows r
Integer signedness error in the AV engine before DAT 8145, as used in McAfee LiveSafe 14.0, allows remote attackers to cause a denial of service (memory corruption and crash) via a crafted packed executable.
nvd
CVE-2017-3898P3MEDIUMCVSS 5.9PoC≤ 16.0.22017-09-01
CVE-2017-3898 [MEDIUM] CWE-20 CVE-2017-3898: A man-in-the-middle attack vulnerability in the non-certificate-based authentication mechanism in Mc
A man-in-the-middle attack vulnerability in the non-certificate-based authentication mechanism in McAfee LiveSafe (MLS) versions prior to 16.0.3 allows network attackers to modify the Windows registry value associated with the McAfee update via the HTTP backend-response.
nvd