CyberSec.Space Logo
CVEブラウザに戻る

CVE-2018-6667

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0240%
EPSS Percentile23.45th
Published2018年6月26日
Last Modified2024年11月21日

Vulnerability Description

Authentication Bypass vulnerability in the administrative user interface in McAfee Web Gateway 7.8.1.0 through 7.8.1.5 allows remote attackers to execute arbitrary code via Java management extensions (JMX).

Affected Platforms (CPE)

📦
Mcafee

Mcafee Web Gateway

>= 7.8.1.0 and <= 7.8.1.5

References & Advisories

🔗 http://www.securityfocus.com/bid/104564
🔗 http://www.securitytracker.com/id/1041129
🔗 https://kc.mcafee.com/corporate/index?page=content&id=SB10241
🔗 http://www.securityfocus.com/bid/104564
🔗 http://www.securitytracker.com/id/1041129
🔗 https://kc.mcafee.com/corporate/index?page=content&id=SB10241

関連する脆弱性情報

CVE-2018-66789.1

Configuration/Environment manipulation vulnerability in the administrative interface in McAfee Web Gateway (MWG) MWG 7.8.1.x allow...

CVE-2018-66779.1

Directory Traversal vulnerability in the administrative user interface in McAfee Web Gateway (MWG) MWG 7.8.1.x allows authenticate...

CVE-2020-72939.0

Privilege Escalation vulnerability in McAfee Web Gateway (MWG) prior to 9.2.1 allows authenticated user interface user with low pe...

CVE-2021-238859.0

Privilege escalation vulnerability in McAfee Web Gateway (MWG) prior to 9.2.8 allows an authenticated user to gain elevated privil...