Agent Security Vulnerabilities and Issues — Agent CVE List

Lucene search

McafeeAgent

9 matches found

CVE•added 2022/04/14 3:15 p.m.•83 views

CVE-2022-1256

A local privilege escalation vulnerability in MA for Windows prior to 5.7.6 allows a local low privileged user to gain system privileges through running the repair functionality. Temporary file actions were performed on the local user's %TEMP% directory with System privileges through manipulation o...

7.8CVSS8.1AI score0.00106EPSS

CVE•added 2022/01/19 11:15 a.m.•71 views

CVE-2022-0166

A privilege escalation vulnerability in the McAfee Agent prior to 5.7.5. McAfee Agent uses openssl.cnf during the build process to specify the OPENSSLDIR variable as a subdirectory within the installation directory. A low privilege user could have created subdirectories and executed arbitrary code ...

7.8CVSS7.8AI score0.00059EPSS

CVE•added 2019/07/18 6:15 p.m.•69 views

CVE-2019-3592

Privilege escalation vulnerability in McAfee Agent (MA) before 5.6.1 HF3, allows local administrator users to potentially disable some McAfee processes by manipulating the MA directory control and placing a carefully constructed file in the MA directory.

7.2CVSS6.7AI score0.0006EPSS

CVE•added 2020/06/10 11:15 a.m.•43 views

CVE-2019-3613

DLL Search Order Hijacking vulnerability in McAfee Agent (MA) prior to 5.6.4 allows attackers with local access to execute arbitrary code via execution from a compromised folder.

7.3CVSS6.8AI score0.00036EPSS

CVE•added 2018/12/12 8:0 p.m.•38 views

CVE-2018-6704

Privilege escalation vulnerability in McAfee Agent (MA) for Linux 5.0.0 through 5.0.6, 5.5.0, and 5.5.1 allows local users to perform arbitrary command execution via specific conditions.

7.8CVSS6.3AI score0.00043EPSS

CVE•added 2018/12/12 8:29 p.m.•38 views

CVE-2018-6705

Privilege escalation vulnerability in McAfee Agent (MA) for Linux 5.0.0 through 5.0.6, 5.5.0, and 5.5.1 allows local users to perform arbitrary command execution via specific conditions.

7.8CVSS5.9AI score0.00108EPSS

CVE•added 2018/12/12 11:29 p.m.•36 views

CVE-2018-6706

Insecure handling of temporary files in non-Windows McAfee Agent 5.0.0 through 5.0.6, 5.5.0, and 5.5.1 allows an Unprivileged User to introduce custom paths during agent installation in Linux via unspecified vectors.

7.5CVSS5.4AI score0.00239EPSS

CVE•added 2018/12/14 12:29 a.m.•35 views

CVE-2018-6707

Denial of Service through Resource Depletion vulnerability in the agent in non-Windows McAfee Agent (MA) 5.0.0 through 5.0.6, 5.5.0, and 5.5.1 allows local users to cause DoS, unexpected behavior, or potentially unauthorized code execution via knowledge of the internal trust mechanism.

7CVSS5.7AI score0.00037EPSS

CVE•added 2019/02/28 4:0 p.m.•35 views

CVE-2019-3599

Information Disclosure vulnerability in Remote logging (which is disabled by default) in McAfee Agent (MA) 5.x allows remote unauthenticated users to access sensitive information via remote logging when it is enabled.

7.5CVSS6.8AI score0.00319EPSS