Mcafee Web Gateway vulnerabilities

42 known vulnerabilities affecting mcafee/web_gateway.

Total CVEs

CISA KEV

actively exploited

Public exploits

Exploited in wild

Severity breakdown

CRITICAL6HIGH17MEDIUM19

Vulnerabilities

Page 1 of 3

CVE-2022-1254MEDIUMCVSS 6.1≥ 7.0.0, < 7.8.2.31≥ 8.0.0, < 8.2.27+3 more2022-04-20

CVE-2022-1254 [MEDIUM] CWE-601 CVE-2022-1254: A URL redirection vulnerability in Skyhigh SWG in main releases 10.x prior to 10.2.9, 9.x prior to 9 A URL redirection vulnerability in Skyhigh SWG in main releases 10.x prior to 10.2.9, 9.x prior to 9.2.20, 8.x prior to 8.2.27, and 7.x prior to 7.8.2.31, and controlled release 11.x prior to 11.1.3 allows a remote attacker to redirect a user to a malicious website controlled by the attacker. This is possible because SWG incorrectly creates a HTTP red

nvd

CVE-2021-3450HIGHCVSS 7.4v8.2.19v9.2.10+1 more2021-03-25

CVE-2021-3450 [HIGH] CWE-295 CVE-2021-3450: The X509_V_FLAG_X509_STRICT flag enables additional security checks of the certificates present in a The X509_V_FLAG_X509_STRICT flag enables additional security checks of the certificates present in a certificate chain. It is not set by default. Starting from OpenSSL version 1.1.1h a check to disallow certificates in the chain that have explicitly encoded elliptic curve parameters was added as an additional strict check. An error in the implementation

nvd

CVE-2021-3449MEDIUMCVSS 5.9v8.2.19v9.2.10+1 more2021-03-25

CVE-2021-3449 [MEDIUM] CWE-476 CVE-2021-3449: An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it was present in the initial ClientHello), but includes a signature_algorithms_cert extension then a NULL pointer dereference will result, leading to a cr

nvd

CVE-2021-23885HIGHCVSS 8.8fixed in 8.2.17≥ 9.2, < 9.2.8+1 more2021-02-17

CVE-2021-23885 [CRITICAL] CWE-269 CVE-2021-23885: Privilege escalation vulnerability in McAfee Web Gateway (MWG) prior to 9.2.8 allows an authenticate Privilege escalation vulnerability in McAfee Web Gateway (MWG) prior to 9.2.8 allows an authenticated user to gain elevated privileges through the User Interface and execute commands on the appliance via incorrect improper neutralization of user input in the troubleshooting page.

nvd

CVE-2021-3156HIGHCVSS 7.8KEVPoCv8.2.17v9.2.8+1 more2021-01-26

CVE-2021-3156 [HIGH] CWE-193 CVE-2021-3156: Sudo before 1.9.5p2 contains an off-by-one error that can result in a heap-based buffer overflow, wh Sudo before 1.9.5p2 contains an off-by-one error that can result in a heap-based buffer overflow, which allows privilege escalation to root via "sudoedit -s" and a command-line argument that ends with a single backslash character.

nvd

CVE-2020-7297MEDIUMCVSS 5.7≥ 7.8.0, < 7.8.2.22≥ 8.2.0, < 8.2.9+1 more2020-09-16

CVE-2020-7297 [MEDIUM] CWE-287 CVE-2020-7297: Privilege Escalation vulnerability in McAfee Web Gateway (MWG) prior to 9.2.1 allows authenticated u Privilege Escalation vulnerability in McAfee Web Gateway (MWG) prior to 9.2.1 allows authenticated user interface user to access protected dashboard data via improper access control in the user interface.

nvd

CVE-2020-7293CRITICALCVSS 9.0≥ 7.8.0, < 7.8.2.23≥ 8.2.0, < 8.2.11+1 more2020-09-15

CVE-2020-7293 [CRITICAL] CWE-287 CVE-2020-7293: Privilege Escalation vulnerability in McAfee Web Gateway (MWG) prior to 9.2.1 allows authenticated u Privilege Escalation vulnerability in McAfee Web Gateway (MWG) prior to 9.2.1 allows authenticated user interface user with low permissions to change the system's root password via improper access controls in the user interface.

nvd

CVE-2020-7294MEDIUMCVSS 4.6≥ 7.8.0, < 7.8.2.23≥ 8.2.0, < 8.2.11+1 more2020-09-15

CVE-2020-7294 [MEDIUM] CWE-287 CVE-2020-7294: Privilege Escalation vulnerability in McAfee Web Gateway (MWG) prior to 9.2.1 allows authenticated u Privilege Escalation vulnerability in McAfee Web Gateway (MWG) prior to 9.2.1 allows authenticated user interface user to delete or download protected files via improper access controls in the REST interface.

nvd

CVE-2020-7296MEDIUMCVSS 5.7≥ 7.8.0, < 7.8.2.23≥ 8.2.0, < 8.2.11+1 more2020-09-15

CVE-2020-7296 [MEDIUM] CWE-287 CVE-2020-7296: Privilege Escalation vulnerability in McAfee Web Gateway (MWG) prior to 9.2.1 allows authenticated u Privilege Escalation vulnerability in McAfee Web Gateway (MWG) prior to 9.2.1 allows authenticated user interface user to access protected configuration files via improper access control in the user interface.

nvd

CVE-2020-7295MEDIUMCVSS 4.6≥ 7.8.0, < 7.8.2.23≥ 8.2.0, < 8.2.11+1 more2020-09-15

CVE-2020-7295 [LOW] CWE-287 CVE-2020-7295: Privilege Escalation vulnerability in McAfee Web Gateway (MWG) prior to 9.2.1 allows authenticated u Privilege Escalation vulnerability in McAfee Web Gateway (MWG) prior to 9.2.1 allows authenticated user interface user to delete or download protected log data via improper access controls in the user interface.

nvd

CVE-2020-7292MEDIUMCVSS 4.3≥ 7.8.0, < 7.8.2.22≥ 8.2.0, < 8.2.9+1 more2020-07-15

CVE-2020-7292 [MEDIUM] CWE-838 CVE-2020-7292: Inappropriate Encoding for output context vulnerability in McAfee Web Gateway (MWG) prior to 9.2.1 a Inappropriate Encoding for output context vulnerability in McAfee Web Gateway (MWG) prior to 9.2.1 allows a remote attacker to cause MWG to return an ambiguous redirect response via getting a user to click on a malicious URL.

nvd

CVE-2019-3638CRITICALCVSS 9.6≥ 7.8.2, < 7.8.2.13≥ 8.0.0, < 8.2.02019-09-12

CVE-2019-3638 [HIGH] CWE-79 CVE-2019-3638: Reflected Cross Site Scripting vulnerability in Administrators web console in McAfee Web Gateway (MW Reflected Cross Site Scripting vulnerability in Administrators web console in McAfee Web Gateway (MWG) 7.8.x prior to 7.8.2.13 allows remote attackers to collect sensitive information or execute commands with the MWG administrator's credentials via tricking the administrator to click on a carefully constructed malicious link.

nvd

CVE-2019-3644HIGHCVSS 7.5≥ 7.7.2.0, < 7.7.2.24≥ 7.8.2, < 7.8.2.13+1 more2019-09-11

CVE-2019-3644 [HIGH] CVE-2019-3644: McAfee Web Gateway (MWG) earlier than 7.8.2.13 is vulnerable to a remote attacker exploiting CVE-201 McAfee Web Gateway (MWG) earlier than 7.8.2.13 is vulnerable to a remote attacker exploiting CVE-2019-9517, potentially leading to a denial of service. This affects the scanning proxies.

nvd

CVE-2019-3643HIGHCVSS 7.5≥ 7.7.2.0, < 7.7.2.24≥ 7.8.2, < 7.8.2.13+1 more2019-09-11

CVE-2019-3643 [MEDIUM] CVE-2019-3643: McAfee Web Gateway (MWG) earlier than 7.8.2.13 is vulnerable to a remote attacker exploiting CVE-201 McAfee Web Gateway (MWG) earlier than 7.8.2.13 is vulnerable to a remote attacker exploiting CVE-2019-9511, potentially leading to a denial of service. This affects the scanning proxies.

nvd

CVE-2019-3639HIGHCVSS 7.1≥ 7.8.2.0, < 7.8.2.122019-08-14

CVE-2019-3639 [HIGH] CWE-1021 CVE-2019-3639: Clickjack vulnerability in Adminstrator web console in McAfee Web Gateway (MWG) 7.8.2.x prior to 7.8 Clickjack vulnerability in Adminstrator web console in McAfee Web Gateway (MWG) 7.8.2.x prior to 7.8.2.12 allows remote attackers to conduct clickjacking attacks via a crafted web page that contains an iframe via does not send an X-Frame-Options HTTP header.

nvd

CVE-2019-3635MEDIUMCVSS 6.5≥ 7.8.2.0, < 7.8.2.122019-08-14

CVE-2019-3635 [MEDIUM] CVE-2019-3635: Exfiltration of Data in McAfee Web Gateway (MWG) 7.8.2.x prior to 7.8.2.12 allows attackers to obtai Exfiltration of Data in McAfee Web Gateway (MWG) 7.8.2.x prior to 7.8.2.12 allows attackers to obtain sensitive data via crafting a complex webpage that will trigger the Web Gateway to block the user accessing an iframe.

nvd

CVE-2019-9515HIGHCVSS 7.5≥ 7.7.2.0, < 7.7.2.24≥ 7.8.2.0, < 7.8.2.13+1 more2019-08-13

CVE-2019-9515 [HIGH] CWE-400 CVE-2019-9515: Some HTTP/2 implementations are vulnerable to a settings flood, potentially leading to a denial of s Some HTTP/2 implementations are vulnerable to a settings flood, potentially leading to a denial of service. The attacker sends a stream of SETTINGS frames to the peer. Since the RFC requires that the peer reply with one acknowledgement per SETTINGS frame, an empty SETTINGS frame is almost equivalent in behavior to a ping. Depending on how efficiently th

nvd

CVE-2019-9517HIGHCVSS 7.5≥ 7.7.2.0, < 7.7.2.24≥ 7.8.2.0, < 7.8.2.13+1 more2019-08-13

CVE-2019-9517 [HIGH] CWE-400 CVE-2019-9517: Some HTTP/2 implementations are vulnerable to unconstrained interal data buffering, potentially lead Some HTTP/2 implementations are vulnerable to unconstrained interal data buffering, potentially leading to a denial of service. The attacker opens the HTTP/2 window so the peer can send without constraint; however, they leave the TCP window closed so the peer cannot actually write (many of) the bytes on the wire. The attacker then sends a stream of requ

nvd

CVE-2019-9514HIGHCVSS 7.5≥ 7.7.2.0, < 7.7.2.24≥ 7.8.2.0, < 7.8.2.13+1 more2019-08-13

CVE-2019-9514 [HIGH] CWE-400 CVE-2019-9514: Some HTTP/2 implementations are vulnerable to a reset flood, potentially leading to a denial of serv Some HTTP/2 implementations are vulnerable to a reset flood, potentially leading to a denial of service. The attacker opens a number of streams and sends an invalid request over each stream that should solicit a stream of RST_STREAM frames from the peer. Depending on how the peer queues the RST_STREAM frames, this can consume excess memory, CPU, or both

nvd

CVE-2019-9511HIGHCVSS 7.5≥ 7.7.2.0, < 7.7.2.24≥ 7.8.2.0, < 7.8.2.13+1 more2019-08-13

CVE-2019-9511 [HIGH] CWE-400 CVE-2019-9511: Some HTTP/2 implementations are vulnerable to window size manipulation and stream prioritization man Some HTTP/2 implementations are vulnerable to window size manipulation and stream prioritization manipulation, potentially leading to a denial of service. The attacker requests a large amount of data from a specified resource over multiple streams. They manipulate window size and stream priority to force the server to queue the data in 1-byte chunks. De

nvd

1 / 3Next →