Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mcafee agent vulnerabilities and exploits
(subscribe to this query)
4.4
CVSSv2
CVE-2021-31840
A vulnerability in the preloading mechanism of specific dynamic link libraries in McAfee Agent for Windows before 5.7.3 could allow an authenticated, local malicious user to perform a DLL preloading attack with unsigned DLLs. To exploit this vulnerability, the attacker would need...
Mcafee Mcafee Agent
3.6
CVSSv2
CVE-2021-31836
Improper privilege management vulnerability in maconfig for McAfee Agent for Windows before 5.7.4 allows a local user to gain access to sensitive information. The utility was able to be run from any location on the file system and by a low privileged user.
Mcafee Mcafee Agent
6.9
CVSSv2
CVE-2021-31841
A DLL sideloading vulnerability in McAfee Agent for Windows before 5.7.4 could allow a local user to perform a DLL sideloading attack with an unsigned DLL with a specific name and in a specific location. This would result in the user gaining elevated permissions and the ability t...
Mcafee Mcafee Agent
6.9
CVSSv2
CVE-2020-7311
Privilege Escalation vulnerability in the installer in McAfee Agent (MA) for Windows before 5.6.6 allows local users to assume SYSTEM rights during the installation of MA via manipulation of log files.
Mcafee Mcafee Agent
4.6
CVSSv2
CVE-2020-7312
DLL Search Order Hijacking Vulnerability in the installer in McAfee Agent (MA) for Windows before 5.6.6 allows local users to execute arbitrary code and escalate privileges via execution from a compromised folder.
Mcafee Mcafee Agent
7.2
CVSSv2
CVE-2020-7314
Privilege Escalation Vulnerability in the installer in McAfee Data Exchange Layer (DXL) Client for Mac shipped with McAfee Agent (MA) for Mac prior to MA 5.6.6 allows local users to run commands as root via incorrectly applied permissions on temporary files.
Mcafee Mcafee Agent
4.6
CVSSv2
CVE-2020-7315
DLL Injection Vulnerability in McAfee Agent (MA) for Windows before 5.6.6 allows local users to execute arbitrary code via careful placement of a malicious DLL.
Mcafee Mcafee Agent
7.6
CVSSv2
CVE-2006-5273
Heap-based buffer overflow in McAfee ePolicy Orchestrator 3.5 up to and including 3.6.1, ProtectionPilot 1.1.1 and 1.5, and Common Management Agent (CMA) 3.5.5.438 up to and including 3.6.0.453 allows remote malicious users to execute arbitrary code via a crafted packet.
Mcafee Protectionpilot 1.1.1
Mcafee Protectionpilot 1.5.0
Mcafee Common Management Agent
Mcafee Common Management Agent 3.6.0.438
Mcafee E-business Server 3.5
Mcafee E-business Server 3.6.1
7.2
CVSSv2
CVE-2022-1256
A local privilege escalation vulnerability in MA for Windows before 5.7.6 allows a local low privileged user to gain system privileges through running the repair functionality. Temporary file actions were performed on the local user's %TEMP% directory with System privileges ...
Mcafee Agent
2.1
CVSSv2
CVE-2022-1257
Insecure storage of sensitive information vulnerability in MA for Linux, macOS, and Windows before 5.7.6 allows a local user to gain access to sensitive information through storage in ma.db. The sensitive information has been moved to encrypted database files.
Mcafee Agent
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »