Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mcafee agent vulnerabilities and exploits
(subscribe to this query)
6.9
CVSSv2
CVE-2020-7311
Privilege Escalation vulnerability in the installer in McAfee Agent (MA) for Windows before 5.6.6 allows local users to assume SYSTEM rights during the installation of MA via manipulation of log files.
Mcafee Mcafee Agent
4.6
CVSSv2
CVE-2020-7312
DLL Search Order Hijacking Vulnerability in the installer in McAfee Agent (MA) for Windows before 5.6.6 allows local users to execute arbitrary code and escalate privileges via execution from a compromised folder.
Mcafee Mcafee Agent
7.2
CVSSv2
CVE-2020-7314
Privilege Escalation Vulnerability in the installer in McAfee Data Exchange Layer (DXL) Client for Mac shipped with McAfee Agent (MA) for Mac prior to MA 5.6.6 allows local users to run commands as root via incorrectly applied permissions on temporary files.
Mcafee Mcafee Agent
4.6
CVSSv2
CVE-2020-7315
DLL Injection Vulnerability in McAfee Agent (MA) for Windows before 5.6.6 allows local users to execute arbitrary code via careful placement of a malicious DLL.
Mcafee Mcafee Agent
3.6
CVSSv2
CVE-2021-31836
Improper privilege management vulnerability in maconfig for McAfee Agent for Windows before 5.7.4 allows a local user to gain access to sensitive information. The utility was able to be run from any location on the file system and by a low privileged user.
Mcafee Mcafee Agent
4.4
CVSSv2
CVE-2021-31840
A vulnerability in the preloading mechanism of specific dynamic link libraries in McAfee Agent for Windows before 5.7.3 could allow an authenticated, local malicious user to perform a DLL preloading attack with unsigned DLLs. To exploit this vulnerability, the attacker would need...
Mcafee Mcafee Agent
6.9
CVSSv2
CVE-2021-31841
A DLL sideloading vulnerability in McAfee Agent for Windows before 5.7.4 could allow a local user to perform a DLL sideloading attack with an unsigned DLL with a specific name and in a specific location. This would result in the user gaining elevated permissions and the ability t...
Mcafee Mcafee Agent
7.6
CVSSv2
CVE-2006-5273
Heap-based buffer overflow in McAfee ePolicy Orchestrator 3.5 up to and including 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.5.5.438 up to and including 3.6.0.453 allows remote malicious users to execute arbitrary code via a crafted packet.
Mcafee Protectionpilot 1.1.1
Mcafee Protectionpilot 1.5.0
Mcafee Common Management Agent
Mcafee Common Management Agent 3.6.0.438
Mcafee E-business Server 3.5
Mcafee E-business Server 3.6.1
2.1
CVSSv2
CVE-2021-31839
Improper privilege management vulnerability in McAfee Agent for Windows before 5.7.3 allows a local user to modify event information in the MA event folder. This allows a local user to either add false events or remove events from the event logs prior to them being sent to the eP...
Mcafee Agent
2.1
CVSSv2
CVE-2022-1257
Insecure storage of sensitive information vulnerability in MA for Linux, macOS, and Windows before 5.7.6 allows a local user to gain access to sensitive information through storage in ma.db. The sensitive information has been moved to encrypted database files.
Mcafee Agent
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3201
CVE-2024-4779
CVE-2024-35090
CVE-2024-5084
hard-coded
CVE-2024-4985
HTML injection
CVE-2024-33655
local file inclusion
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »