McAfee Security Scan Plus Local Priv Escal via Config File (4.1.262.1)
CVE-2022-37025 Published on August 18, 2022

An improper privilege management vulnerability in McAfee Security Scan Plus (MSS+) before 4.1.262.1 could allow a local user to modify a configuration file and perform a LOLBin (Living off the land) attack. This could result in the user gaining elevated permissions and being able to execute arbitrary code due to lack of an integrity check of the configuration file.

NVD

Products Associated with CVE-2022-37025

Want to know whenever a new CVE is published for McAfee Security Scan Plus? stack.watch will email you.

McAfee Security Scan Plus

Exploit Probability

EPSS

0.14%

Percentile

34.56%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

McAfee Security Scan Plus Local Priv Escal via Config File (4.1.262.1)CVE-2022-37025 Published on August 18, 2022

Products Associated with CVE-2022-37025

Exploit Probability

McAfee Security Scan Plus Local Priv Escal via Config File (4.1.262.1)
CVE-2022-37025 Published on August 18, 2022