Mcafee

Mcafee Agent

10 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.1

CVE-2021-31836

  • EPSS 0.05%
  • Published 22.09.2021 14:15:07
  • Last modified 21.11.2024 06:06:19

Improper privilege management vulnerability in maconfig for McAfee Agent for Windows prior to 5.7.4 allows a local user to gain access to sensitive information. The utility was able to be run from any location on the file system and by a low privileg...

7.3

CVE-2021-31841

  • EPSS 0.02%
  • Published 22.09.2021 14:15:07
  • Last modified 21.11.2024 06:06:20

A DLL sideloading vulnerability in McAfee Agent for Windows prior to 5.7.4 could allow a local user to perform a DLL sideloading attack with an unsigned DLL with a specific name and in a specific location. This would result in the user gaining elevat...

7.3

CVE-2021-31840

  • EPSS 0.04%
  • Published 10.06.2021 17:15:08
  • Last modified 21.11.2024 06:06:20

A vulnerability in the preloading mechanism of specific dynamic link libraries in McAfee Agent for Windows prior to 5.7.3 could allow an authenticated, local attacker to perform a DLL preloading attack with unsigned DLLs. To exploit this vulnerabilit...

7.8

CVE-2020-7312

  • EPSS 0.05%
  • Published 10.09.2020 10:15:11
  • Last modified 21.11.2024 05:37:02

DLL Search Order Hijacking Vulnerability in the installer in McAfee Agent (MA) for Windows prior to 5.6.6 allows local users to execute arbitrary code and escalate privileges via execution from a compromised folder.

7.8

CVE-2020-7314

  • EPSS 0.03%
  • Published 10.09.2020 10:15:11
  • Last modified 21.11.2024 05:37:02

Privilege Escalation Vulnerability in the installer in McAfee Data Exchange Layer (DXL) Client for Mac shipped with McAfee Agent (MA) for Mac prior to MA 5.6.6 allows local users to run commands as root via incorrectly applied permissions on temporar...

6.7

CVE-2020-7315

  • EPSS 0.15%
  • Published 10.09.2020 10:15:11
  • Last modified 21.11.2024 05:37:02

DLL Injection Vulnerability in McAfee Agent (MA) for Windows prior to 5.6.6 allows local users to execute arbitrary code via careful placement of a malicious DLL.

7

CVE-2020-7311

  • EPSS 0.03%
  • Published 10.09.2020 10:15:10
  • Last modified 21.11.2024 05:37:02

Privilege Escalation vulnerability in the installer in McAfee Agent (MA) for Windows prior to 5.6.6 allows local users to assume SYSTEM rights during the installation of MA via manipulation of log files.

5.9

CVE-2017-3896

  • EPSS 0.95%
  • Published 13.02.2017 16:59:00
  • Last modified 20.04.2025 01:37:25

Unvalidated parameter vulnerability in the remote log viewing capability in Intel Security McAfee Agent 5.0.x versions prior to 5.0.4.449 allows remote attackers to pass unexpected input parameters via a URL that was not completely validated.

5

CVE-2015-7237

  • EPSS 0.24%
  • Published 18.09.2015 14:59:02
  • Last modified 12.04.2025 10:46:40

Directory traversal vulnerability in the remote log viewing functionality in McAfee Agent (MA) 5.x before 5.0.2 allows remote attackers to obtain sensitive information via unspecified vectors.

4.3

CVE-2015-2053

  • EPSS 0.25%
  • Published 23.02.2015 17:59:10
  • Last modified 12.04.2025 10:46:40

The log viewer in McAfee Agent (MA) before 4.8.0 Patch 3 and 5.0.0, when the "Accept connections only from the ePO server" option is disabled, allows remote attackers to conduct clickjacking attacks via a crafted web page, aka an "http-generic-click-...