Vulnerability Monitor

The vendors, products, and vulnerabilities you care about
epolicy_orchestrator Vendor: mcafee

About This Product

epolicy_orchestrator is a software product offered by mcafee. This product is widely deployed in production environments, making vulnerability monitoring essential for organizations relying on it. Security vulnerabilities in products of this category can affect system availability, data confidentiality, and integrity across entire networks. The significant number of reported vulnerabilities indicates this product has received substantial security scrutiny and community focus over time. Regular assessment of known vulnerabilities and timely patching are fundamental components of responsible system administration for any deployment of this software.

Vulnerability Landscape Summary

SecUtils has identified 86 known vulnerabilities affecting mcafee epolicy_orchestrator. This includes 1 critical-severity issue and 19 high-severity issues that warrant immediate attention. Vulnerabilities in this product have been disclosed spanning from 2003 to 2023, indicating a sustained research interest and ongoing security attention. 45 medium-severity issues and 21 low-severity issues complete the vulnerability landscape. Organizations should prioritize patching based on deployment context, asset criticality, and exploitation likelihood rather than severity alone.

Known Vulnerabilities
ID Date Published Last Modified Severity (CVSSv3) Severity (CVSSv2) Exploit Available
CVE-2002-0690 2003-04-11 2025-04-03 - 10.0 Likely
CVE-2003-0148 2003-08-27 2025-04-03 - 7.2 Unknown
CVE-2003-0149 2003-08-27 2025-04-03 - 7.5 Likely
CVE-2003-0610 2003-08-27 2025-04-03 - 5.0 Likely
CVE-2003-0616 2003-08-27 2025-04-03 - 7.5 Likely
CVE-2004-0095 2004-02-17 2025-04-03 - 5.0 Likely
CVE-2004-0038 2004-06-14 2025-04-03 - 7.5 Likely
CVE-2006-5156 2006-10-05 2025-04-09 - 10.0 Likely
CVE-2007-1498 2007-03-16 2025-04-09 - 9.3 Likely
CVE-2006-5274 2007-07-12 2025-04-09 - 7.6 Unknown
CVE-2008-1357 2008-03-17 2025-04-09 - 5.4 Unknown
CVE-2012-4594 2012-08-22 2025-04-11 - 4.0 Likely
CVE-2013-0140 2013-05-01 2025-04-11 - 7.9 Unknown
CVE-2013-0141 2013-05-01 2025-04-11 - 4.3 Unknown
CVE-2013-4882 2013-07-22 2025-04-11 - 6.5 Likely
CVE-2013-4883 2013-07-22 2025-04-11 - 4.3 Likely
CVE-2014-2205 2014-02-26 2025-04-12 - 6.3 Unknown
CVE-2015-0921 2015-01-09 2025-04-12 - 4.0 Likely
CVE-2015-0922 2015-01-09 2025-04-12 - 5.0 Likely
CVE-2015-4559 2015-06-15 2025-04-12 - 4.3 Likely
CVE-2015-2859 2015-06-23 2025-04-12 - 5.8 Likely
CVE-2015-8765 2016-01-08 2025-04-12 8.3 7.5 Likely
CVE-2017-3902 2017-02-13 2025-04-20 5.4 3.5 Unknown
CVE-2016-8027 2017-03-14 2025-04-20 10.0 7.5 Likely
CVE-2017-3980 2017-05-18 2025-04-20 7.2 6.5 Likely
CVE-2018-6660 2018-04-02 2024-11-21 6.2 4.0 Likely
CVE-2018-6659 2018-04-02 2024-11-21 3.7 3.5 Unknown
CVE-2017-3936 2018-06-13 2024-11-21 6.2 7.5 Likely
CVE-2018-6671 2018-06-15 2024-11-21 4.7 4.0 Likely
CVE-2018-6672 2018-06-15 2024-11-21 5.7 4.0 Likely
CVE-2019-3604 2019-02-01 2024-11-21 4.8 6.8 Likely
CVE-2019-2602 2019-04-23 2024-11-21 7.5 5.0 Likely
CVE-2019-3619 2019-07-03 2024-11-21 6.8 4.0 Likely
CVE-2019-2745 2019-07-23 2024-11-21 5.1 1.9 Unknown
CVE-2019-2762 2019-07-23 2024-11-21 5.3 5.0 Likely
CVE-2019-2766 2019-07-23 2024-11-21 3.1 2.6 Unknown
CVE-2019-2769 2019-07-23 2024-11-21 5.3 5.0 Likely
CVE-2019-2816 2019-07-23 2024-11-21 4.8 5.8 Likely
CVE-2019-2842 2019-07-23 2024-11-21 3.7 4.3 Likely
CVE-2019-2894 2019-10-16 2024-11-21 3.7 4.3 Likely
CVE-2019-2933 2019-10-16 2024-11-21 3.1 4.3 Likely
CVE-2019-2949 2019-10-16 2024-11-21 6.8 4.3 Likely
CVE-2019-2975 2019-10-16 2024-11-21 4.8 5.8 Likely
CVE-2020-2583 2020-01-15 2024-11-21 3.7 4.3 Likely
CVE-2020-2590 2020-01-15 2024-11-21 3.7 4.3 Likely
CVE-2020-2593 2020-01-15 2024-11-21 4.8 5.8 Likely
CVE-2020-2604 2020-01-15 2024-11-21 8.1 6.8 Likely
CVE-2020-2654 2020-01-15 2024-11-21 3.7 4.3 Likely
CVE-2020-2754 2020-04-15 2024-11-21 3.7 4.3 Likely
CVE-2020-2755 2020-04-15 2024-11-21 3.7 4.3 Likely
CVE-2020-2756 2020-04-15 2024-11-21 3.7 4.3 Likely
CVE-2020-2757 2020-04-15 2024-11-21 3.7 4.3 Likely
CVE-2020-2773 2020-04-15 2024-11-21 3.7 4.3 Likely
CVE-2020-9484 2020-05-20 2024-11-21 7.0 4.4 Unknown
CVE-2020-13935 2020-07-14 2024-11-21 7.5 5.0 Likely
CVE-2020-14578 2020-07-15 2025-05-27 3.7 4.3 Likely
CVE-2020-14579 2020-07-15 2025-05-27 3.7 4.3 Likely
CVE-2020-14581 2020-07-15 2025-05-27 3.7 4.3 Likely
CVE-2020-14621 2020-07-15 2025-05-27 5.3 5.0 Likely
CVE-2020-7317 2020-10-14 2024-11-21 4.6 2.3 Unknown
CVE-2020-7318 2020-10-14 2024-11-21 4.6 2.3 Unknown
CVE-2020-14782 2020-10-21 2025-05-27 3.7 4.3 Likely
CVE-2020-14792 2020-10-21 2025-05-27 4.2 5.8 Likely
CVE-2021-23840 2021-02-16 2024-11-21 7.5 5.0 Likely
CVE-2021-23888 2021-03-26 2024-11-21 6.3 4.9 Unknown
CVE-2021-23889 2021-03-26 2024-11-21 3.5 3.5 Unknown
CVE-2021-23890 2021-03-26 2024-11-21 6.5 5.8 Likely
CVE-2021-2161 2021-04-22 2024-11-21 5.9 4.3 Likely
CVE-2020-13938 2021-06-10 2024-11-21 5.5 2.1 Unknown
CVE-2021-30639 2021-07-12 2024-11-21 7.5 5.0 Likely
CVE-2021-33037 2021-07-12 2024-11-21 5.3 5.0 Likely
CVE-2021-2432 2021-07-21 2024-11-21 3.7 4.3 Likely
CVE-2021-3712 2021-08-24 2024-11-21 7.4 5.8 Likely
CVE-2021-31834 2021-10-22 2024-11-21 5.4 3.5 Unknown
CVE-2021-31835 2021-10-22 2024-11-21 4.8 4.3 Likely
CVE-2022-0842 2022-03-23 2024-11-21 5.4 4.0 Likely
CVE-2022-0857 2022-03-23 2024-11-21 5.4 4.3 Likely
CVE-2022-0858 2022-03-23 2024-11-21 4.3 4.3 Likely
CVE-2022-0859 2022-03-23 2024-11-21 6.5 4.4 Unknown
CVE-2022-0861 2022-03-23 2024-11-21 3.5 5.5 Likely
CVE-2022-0862 2022-03-23 2024-11-21 3.1 4.3 Likely
CVE-2022-3338 2022-10-18 2024-11-21 5.4 - -
CVE-2022-3339 2022-10-18 2024-11-21 5.4 - -
CVE-2023-3946 2023-07-26 2024-11-21 5.4 - -
CVE-2023-5444 2023-11-17 2024-11-21 8.0 - -
CVE-2023-5445 2023-11-17 2024-11-21 5.4 - -

How SecUtils Interprets Product Data

SecUtils normalizes and enriches National Vulnerability Database (NVD) records for mcafee epolicy_orchestrator by standardizing vendor and product identifiers, aggregating vulnerability metadata from both NVD and MITRE sources, and structuring the data for rapid analysis and asset correlation. For every vulnerability listed, we extract Common Platform Enumeration (CPE) data, Common Weakness Enumeration (CWE) classifications, CVSS severity metrics, and reference information to enable organizations to prioritize patching and risk assessment efficiently. This record contains no exploit code, proof-of-concept instructions, or attack methodologies—only defensive intelligence necessary for vulnerability management and security operations.