- How many CVEs does McAfee have?
- McAfee has 607 published CVE records since 2000, including 1 in the last two years.
- How many McAfee CVEs are in CISA KEV?
- Yes — 2 of McAfee's CVEs are listed in CISA's Known Exploited Vulnerabilities catalog, confirmed exploited in the wild and carrying a CISA remediation deadline.
- Which McAfee products have the most CVEs?
- The McAfee products with the most published CVEs are epolicy orchestrator, Web Gateway, endpoint security, Network Data Loss Prevention, VirusScan Enterprise.
- What are the most common weakness types in McAfee CVEs?
- McAfee's CVEs most often map to these CWE weakness types: CWE-269 (Improper Privilege Management), CWE-79 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')), CWE-274 (Improper Handling of Insufficient Privileges), CWE-59 (Improper Link Resolution Before File Access ('Link Following')).
- Are there public exploits for McAfee vulnerabilities?
- Yes — 72 of McAfee's CVEs have a known public exploit.
- How many critical McAfee vulnerabilities are there?
- McAfee has 44 critical and 221 high-severity CVEs.
- What is the average severity of McAfee CVEs?
- The average CVSS base score across McAfee's scored CVEs is 6.4.