Back to CVE Browser

CVE-2018-6678

CRITICAL

9.1

CVSS Severity Score

EPSS Score0.0490%

EPSS Percentile28.74th

PublishedJul 23, 2018

Last ModifiedNov 21, 2024

Vulnerability Description

Configuration/Environment manipulation vulnerability in the administrative interface in McAfee Web Gateway (MWG) MWG 7.8.1.x allows authenticated administrator users to execute arbitrary commands via unspecified vectors.

Affected Platforms (CPE)

📦

Mcafee

Mcafee Web Gateway

= 7.8.1.0

References & Advisories

🔗 http://www.securityfocus.com/bid/104893

🔗 https://kc.mcafee.com/corporate/index?page=content&id=SB10245

🔗 http://www.securityfocus.com/bid/104893

🔗 https://kc.mcafee.com/corporate/index?page=content&id=SB10245

Related Vulnerabilities

CVE-2018-666710.0

Authentication Bypass vulnerability in the administrative user interface in McAfee Web Gateway 7.8.1.0 through 7.8.1.5 allows remo...

CVE-2018-66779.1

Directory Traversal vulnerability in the administrative user interface in McAfee Web Gateway (MWG) MWG 7.8.1.x allows authenticate...

CVE-2020-72939.0

Privilege Escalation vulnerability in McAfee Web Gateway (MWG) prior to 9.2.1 allows authenticated user interface user with low pe...

CVE-2021-238859.0

Privilege escalation vulnerability in McAfee Web Gateway (MWG) prior to 9.2.8 allows an authenticated user to gain elevated privil...