Lucene search

TrellixCVELIST:CVE-2022-1823

HistoryJun 20, 2022 - 10:15 a.m.

CVE-2022-1823 McAfee MCPR privilege escalation

2022-06-2010:15:22

CWE-269

trellix

www.cve.org

mcafee

privilege escalation

configuration file

lolbin attack

local user

arbitrary code

CVSS3

7.9

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:N/I:H/A:H

EPSS

Percentile

5.1%

JSON

Improper privilege management vulnerability in McAfee Consumer Product Removal Tool prior to version 10.4.128 could allow a local user to modify a configuration file and perform a LOLBin (Living off the land) attack. This could result in the user gaining elevated permissions and being able to execute arbitrary code, through not correctly checking the integrity of the configuration file.

CNA Affected

[
  {
    "product": "McAfee Consumer Product Removal Tool",
    "vendor": "McAfee,LLC",
    "versions": [
      {
        "lessThan": "10.4.128",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

References

service.mcafee.com/?articleId=TS103318&page=shell&shell=article-view

CVSS3

7.9

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:N/I:H/A:H

EPSS

Percentile

5.1%

JSON

Related for CVELIST:CVE-2022-1823