Mcafee Agent Security Vulnerabilities and Issues — Mcafee Agent CVE List

Lucene search

McafeeMcafee Agent

10 matches found

CVE•added 2021/09/22 2:15 p.m.•63 views

CVE-2021-31841

A DLL sideloading vulnerability in McAfee Agent for Windows prior to 5.7.4 could allow a local user to perform a DLL sideloading attack with an unsigned DLL with a specific name and in a specific location. This would result in the user gaining elevated permissions and the ability to execute arbitra...

8.2CVSS7.8AI score0.00019EPSS

CVE•added 2015/02/23 5:59 p.m.•52 views

CVE-2015-2053

The log viewer in McAfee Agent (MA) before 4.8.0 Patch 3 and 5.0.0, when the "Accept connections only from the ePO server" option is disabled, allows remote attackers to conduct clickjacking attacks via a crafted web page, aka an "http-generic-click-jacking" vulnerability.

4.3CVSS6.6AI score0.00245EPSS

CVE•added 2021/09/22 2:15 p.m.•50 views

CVE-2021-31836

Improper privilege management vulnerability in maconfig for McAfee Agent for Windows prior to 5.7.4 allows a local user to gain access to sensitive information. The utility was able to be run from any location on the file system and by a low privileged user.

7.1CVSS6.4AI score0.00047EPSS

CVE•added 2021/06/10 5:15 p.m.•47 views

CVE-2021-31840

A vulnerability in the preloading mechanism of specific dynamic link libraries in McAfee Agent for Windows prior to 5.7.3 could allow an authenticated, local attacker to perform a DLL preloading attack with unsigned DLLs. To exploit this vulnerability, the attacker would need to have valid credenti...

7.3CVSS7.3AI score0.00044EPSS

CVE•added 2020/09/10 10:15 a.m.•45 views

CVE-2020-7311

Privilege Escalation vulnerability in the installer in McAfee Agent (MA) for Windows prior to 5.6.6 allows local users to assume SYSTEM rights during the installation of MA via manipulation of log files.

7.8CVSS6.8AI score0.00028EPSS

CVE•added 2017/02/13 4:59 p.m.•40 views

CVE-2017-3896

Unvalidated parameter vulnerability in the remote log viewing capability in Intel Security McAfee Agent 5.0.x versions prior to 5.0.4.449 allows remote attackers to pass unexpected input parameters via a URL that was not completely validated.

5.9CVSS5.5AI score0.0095EPSS

CVE•added 2020/09/10 10:15 a.m.•39 views

CVE-2020-7315

DLL Injection Vulnerability in McAfee Agent (MA) for Windows prior to 5.6.6 allows local users to execute arbitrary code via careful placement of a malicious DLL.

6.7CVSS6.6AI score0.00149EPSS

CVE•added 2015/09/18 2:59 p.m.•35 views

CVE-2015-7237

Directory traversal vulnerability in the remote log viewing functionality in McAfee Agent (MA) 5.x before 5.0.2 allows remote attackers to obtain sensitive information via unspecified vectors.

5CVSS6.3AI score0.00235EPSS

CVE•added 2020/09/10 10:15 a.m.•34 views

CVE-2020-7314

Privilege Escalation Vulnerability in the installer in McAfee Data Exchange Layer (DXL) Client for Mac shipped with McAfee Agent (MA) for Mac prior to MA 5.6.6 allows local users to run commands as root via incorrectly applied permissions on temporary files.

8.2CVSS7.8AI score0.00028EPSS

CVE•added 2020/09/10 10:15 a.m.•33 views

CVE-2020-7312

DLL Search Order Hijacking Vulnerability in the installer in McAfee Agent (MA) for Windows prior to 5.6.6 allows local users to execute arbitrary code and escalate privileges via execution from a compromised folder.

7.8CVSS8AI score0.00051EPSS