Lucene search
K

7 matches found

Tenable Nessus
Tenable Nessus
added 2022/01/26 12:0 a.m.102 views

McAfee Agent < 5.7.5 Multiple Vulnerabilities (SB10378)

The version of McAfee Agent, formerly McAfee ePolicy Orchestrator ePO Agent, installed on the remote host is prior to 5.7.5. It is, therefore, affected by the following vulnerabilities: - A command Injection Vulnerability in McAfee Agent MA for Windows prior to 5.7.5 allows local users to inject...

9.3CVSS7.7AI score0.02969EPSS
Exploits0References3
ThreatPost
ThreatPost
added 2022/01/21 5:13 p.m.55 views

McAfee Bug Can Be Exploited to Gain Windows SYSTEM Privileges

McAfee has patched two high-severity vulnerabilities in a component of its McAfee Enterprise product that attackers can use to escalate privileges, including up to SYSTEM. According to McAfee’s bulletin, the bugs are in versions prior to 5.7.5 of McAfee Agent, which is used in McAfee Endpoint...

9.3CVSS7.8AI score0.02969EPSS
Exploits0References10
CISA
CISA
added 2022/01/21 12:0 a.m.39 views

McAfee Releases Security Update for McAfee Agent for Windows 

McAfee has released McAfee Agent for Windows version 5.7.5, which addresses vulnerabilities CVE-2021-31854 and CVE-2022-0166. An attacker could exploit these vulnerabilities to take control of an affected system. CISA encourages users and administrators to review McAfee Security Bulletin SB10378...

9.3CVSS7.2AI score0.02969EPSS
Exploits0References2
Circl
Circl
added 2022/01/19 2:35 p.m.4 views

CVE-2021-31854

creationtimestamp| type| source ---|---|--- 2022-01-19 14:35:47+00:00| seen| https://t.me/cibsecurity/35820 2022-01-21 15:47:53+00:00| seen| https://t.me/truesecator/2545 2022-01-24 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=726...

9.3CVSS7.5AI score0.01016EPSS
Exploits0References3
NVD
NVD
added 2022/01/19 11:15 a.m.32 views

CVE-2021-31854

A command Injection Vulnerability in McAfee Agent MA for Windows prior to 5.7.5 allows local users to inject arbitrary shell code into the file cleanup.exe. The malicious clean.exe file is placed into the relevant folder and executed by running the McAfee Agent deployment feature located in the...

9.3CVSS0.01016EPSS
Exploits0References1
CVE
CVE
added 2022/01/19 11:0 a.m.103 views

CVE-2021-31854

CVE-2021-31854 : McAfee Agent for Windows versions prior to 5.7.5 is affected by a command-injection vulnerability in the file cleanup.exe invoked via the Agent deployment feature in the System Tree. An attacker could place a malicious cleanup.exe in the relevant folder to achieve a reverse shell...

9.3CVSS7.7AI score0.01016EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/01/19 11:0 a.m.37 views

CVE-2021-31854 Code injection vulnerability in McAfee Agent

A command Injection Vulnerability in McAfee Agent MA for Windows prior to 5.7.5 allows local users to inject arbitrary shell code into the file cleanup.exe. The malicious clean.exe file is placed into the relevant folder and executed by running the McAfee Agent deployment feature located in the...

7.7CVSS8.1AI score0.01016EPSS
Exploits0References1
Rows per page
Query Builder