CVE-2018-6706 McAfee Agent (MA) non-Windows versions incorrect use of temporary file vulnerability

🗓️ 12 Dec 2018 23:00:00Reported by trellixType

McAfee Agent (MA) non-Windows versions temporary file vulnerabilit

Reporter	Title	Published	Views	Family All 9
BDU FSTEC	The vulnerability of the McAfee Agent antivirus software, related to errors in processing temporary files, allows a hacker to increase their privileges.	23 Jun 202100:00	–	bdu_fstec
CNVD	McAfee Agent Temporary File Insecurity Handling Vulnerability	14 Dec 201800:00	–	cnvd
CVE	CVE-2018-6706	12 Dec 201823:00	–	cve
EUVD	EUVD-2018-18453	7 Oct 202500:30	–	euvd
Tenable Nessus	McAfee Agent 5.0.x / 5.5.0 / 5.5.1 Multiple Vulnerabilities (SB10260)	7 Jun 201900:00	–	nessus
NVD	CVE-2018-6706	12 Dec 201823:29	–	nvd
OSV	CVE-2018-6706	12 Dec 201823:29	–	osv
Prion	Design/Logic Flaw	12 Dec 201823:29	–	prion
Positive Technologies	PT-2018-3690 · Mcafee · Mcafee Agent	11 Dec 201800:00	–	ptsecurity

[
  {
    "platforms": [
      "x86"
    ],
    "product": "McAfee Agent (MA) for Linux",
    "vendor": "McAfee",
    "versions": [
      {
        "status": "affected",
        "version": "5.5.0"
      },
      {
        "status": "affected",
        "version": "5.5.1"
      },
      {
        "lessThan": "5.0.0*",
        "status": "affected",
        "version": "5.0.0",
        "versionType": "custom"
      },
      {
        "lessThanOrEqual": "5.0.6",
        "status": "affected",
        "version": "5.0.6",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
securityfocus	www.securityfocus.com/bid/106328
kc	www.kc.mcafee.com/corporate/index

27 Dec 2018 10:57Current

7.4High risk

Vulners AI Score7.4

CVSS 32.3

EPSS0.00165

CWE-377