2 matches found
CVE-2022-1824
McAfee Consumer Product Removal Tool (MCPR) versions prior to 10.4.128 are affected by an uncontrolled search path vulnerability that enables a local user to perform a sideloading attack via a specific filename, potentially gaining elevated privileges and executing arbitrary code due to insuffici...
CVE-2022-1823
The CVE-2022-1823 issue affects McAfee Consumer Product Removal Tool (MCPR) prior to version 10.4.128. Root cause: improper privilege management allows a local user to modify the MCPR configuration file, enabling a LOLBin-based attack and elevation of privileges to execute arbitrary code. Impact:...