CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

232 matches found

RedhatCVE•added 2026/01/09 9:19 a.m.•5 views

CVE-2021-31839

Improper privilege management vulnerability in McAfee Agent for Windows prior to 5.7.3 allows a local user to modify event information in the MA event folder. This allows a local user to either add false events or remove events from the event logs prior to them being sent to the ePO server...

4.8CVSS6.3AI score0.00182EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 9:19 a.m.•6 views

CVE-2021-31836

Improper privilege management vulnerability in maconfig for McAfee Agent for Windows prior to 5.7.4 allows a local user to gain access to sensitive information. The utility was able to be run from any location on the file system and by a low privileged user...

7.1CVSS6.8AI score0.0019EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 8:50 a.m.•7 views

CVE-2021-31840

A vulnerability in the preloading mechanism of specific dynamic link libraries in McAfee Agent for Windows prior to 5.7.3 could allow an authenticated, local attacker to perform a DLL preloading attack with unsigned DLLs. To exploit this vulnerability, the attacker would need to have valid...

7.3CVSS7.2AI score0.00348EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 8:50 a.m.•9 views

CVE-2021-31841

A DLL sideloading vulnerability in McAfee Agent for Windows prior to 5.7.4 could allow a local user to perform a DLL sideloading attack with an unsigned DLL with a specific name and in a specific location. This would result in the user gaining elevated permissions and the ability to execute...

8.2CVSS7.5AI score0.00234EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 8:50 a.m.•12 views

CVE-2021-31854

A command Injection Vulnerability in McAfee Agent MA for Windows prior to 5.7.5 allows local users to inject arbitrary shell code into the file cleanup.exe. The malicious clean.exe file is placed into the relevant folder and executed by running the McAfee Agent deployment feature located in the...

9.3CVSS7.7AI score0.01016EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 8:50 a.m.•7 views

CVE-2021-31847

Improper access control vulnerability in the repair process for McAfee Agent for Windows prior to 5.7.4 could allow a local attacker to perform a DLL preloading attack using unsigned DLLs. This would result in elevation of privileges and the ability to execute arbitrary code as the system user,...

8.2CVSS7.5AI score0.00386EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 8:41 a.m.•8 views

CVE-2022-0166

A privilege escalation vulnerability in the McAfee Agent prior to 5.7.5. McAfee Agent uses openssl.cnf during the build process to specify the OPENSSLDIR variable as a subdirectory within the installation directory. A low privilege user could have created subdirectories and executed arbitrary cod...

7.8CVSS7.4AI score0.02969EPSS

Exploits0References1