Vulnerabilities (CVE)

Filtered by vendor Mcafee Subscribe
Filtered by product Enterprise Mobility Manager Agent
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2012-4588 1 Mcafee 2 Enterprise Mobility Manager, Enterprise Mobility Manager Agent 2024-11-21 4.3 MEDIUM N/A
McAfee Enterprise Mobility Manager (EMM) Agent before 4.8 and Server before 10.1 record all invalid usernames presented in failed login attempts, and place them on a list of accounts that an administrator may wish to unlock, which allows remote attackers to cause a denial of service (excessive list size in the EMM Database) via a long sequence of login attempts with different usernames.
CVE-2012-4587 1 Mcafee 2 Enterprise Mobility Manager, Enterprise Mobility Manager Agent 2024-11-21 3.5 LOW N/A
McAfee Enterprise Mobility Manager (EMM) Agent before 4.8 and Server before 10.1, when one-time provisioning (OTP) mode is enabled, have an improper dependency on DNS SRV records, which makes it easier for remote attackers to discover user passwords by spoofing the EMM server, as demonstrated by a password entered on an iOS device.