Mcafee Agent
By the Year
In 2023 there have been 0 vulnerabilities in Mcafee Agent . Mcafee Agent did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2023 | 0 | 0.00 |
| 2022 | 0 | 0.00 |
| 2021 | 4 | 7.50 |
| 2020 | 3 | 7.17 |
| 2019 | 0 | 0.00 |
| 2018 | 0 | 0.00 |
It may take a day or so for new Mcafee Agent vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Mcafee Agent Security Vulnerabilities
A DLL sideloading vulnerability in McAfee Agent for Windows prior to 5.7.4 could
CVE-2021-31841
7.8 - High
- September 22, 2021
A DLL sideloading vulnerability in McAfee Agent for Windows prior to 5.7.4 could allow a local user to perform a DLL sideloading attack with an unsigned DLL with a specific name and in a specific location. This would result in the user gaining elevated permissions and the ability to execute arbitrary code as the system user, through not checking the DLL signature.
Untrusted Path
Improper privilege management vulnerability in maconfig for McAfee Agent for Windows prior to 5.7.4
CVE-2021-31836
7.1 - High
- September 22, 2021
Improper privilege management vulnerability in maconfig for McAfee Agent for Windows prior to 5.7.4 allows a local user to gain access to sensitive information. The utility was able to be run from any location on the file system and by a low privileged user.
Improper Privilege Management
Improper access control vulnerability in the repair process for McAfee Agent for Windows prior to 5.7.4 could
CVE-2021-31847
7.8 - High
- September 22, 2021
Improper access control vulnerability in the repair process for McAfee Agent for Windows prior to 5.7.4 could allow a local attacker to perform a DLL preloading attack using unsigned DLLs. This would result in elevation of privileges and the ability to execute arbitrary code as the system user, through not correctly protecting a temporary directory used in the repair process and not checking the DLL signature.
Improper Verification of Cryptographic Signature
A vulnerability in the preloading mechanism of specific dynamic link libraries in McAfee Agent for Windows prior to 5.7.3 could
CVE-2021-31840
7.3 - High
- June 10, 2021
A vulnerability in the preloading mechanism of specific dynamic link libraries in McAfee Agent for Windows prior to 5.7.3 could allow an authenticated, local attacker to perform a DLL preloading attack with unsigned DLLs. To exploit this vulnerability, the attacker would need to have valid credentials on the Windows system. This would result in the user gaining elevated permissions and being able to execute arbitrary code.
DLL preloading
Privilege Escalation Vulnerability in the installer in McAfee Data Exchange Layer (DXL) Client for Mac shipped with McAfee Agent (MA) for Mac prior to MA 5.6.6
CVE-2020-7314
7.8 - High
- September 10, 2020
Privilege Escalation Vulnerability in the installer in McAfee Data Exchange Layer (DXL) Client for Mac shipped with McAfee Agent (MA) for Mac prior to MA 5.6.6 allows local users to run commands as root via incorrectly applied permissions on temporary files.
Incorrect Permission Assignment for Critical Resource
Privilege Escalation vulnerability in the installer in McAfee Agent (MA) for Windows prior to 5.6.6
CVE-2020-7311
7 - High
- September 10, 2020
Privilege Escalation vulnerability in the installer in McAfee Agent (MA) for Windows prior to 5.6.6 allows local users to assume SYSTEM rights during the installation of MA via manipulation of log files.
Improper Privilege Management
DLL Injection Vulnerability in McAfee Agent (MA) for Windows prior to 5.6.6
CVE-2020-7315
6.7 - Medium
- September 10, 2020
DLL Injection Vulnerability in McAfee Agent (MA) for Windows prior to 5.6.6 allows local users to execute arbitrary code via careful placement of a malicious DLL.
Untrusted Path
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Mcafee Agent or by McAfee? Click the Watch button to subscribe.
