CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-31833

Potential product security bypass vulnerability in McAfee Application and Change Control (MACC) prior to version 8.3.4 allows a locally logged in attacker to circumvent the application solidification protection provided by MACC, permitting them to run applications that would usually be prevented by MACC. This would require the attacker to rename the specified binary to match name of any configured updater and perform a specific set of steps, resulting in the renamed binary to be to run.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 14.5%

CVSS Severity

CVSS v3 Score 7.1

CVSS v2 Score 4.6

References

Products affected by CVE-2021-31833

Mcafee » Application And Change Control » Version: N/A

cpe:2.3:a:mcafee:application_and_change_control:-
Mcafee » Application And Change Control » Version: 6.1.0

cpe:2.3:a:mcafee:application_and_change_control:6.1.0
Mcafee » Application And Change Control » Version: 6.1.1

cpe:2.3:a:mcafee:application_and_change_control:6.1.1
Mcafee » Application And Change Control » Version: 6.1.2

cpe:2.3:a:mcafee:application_and_change_control:6.1.2
Mcafee » Application And Change Control » Version: 6.1.3

cpe:2.3:a:mcafee:application_and_change_control:6.1.3
Mcafee » Application And Change Control » Version: 6.1.4

cpe:2.3:a:mcafee:application_and_change_control:6.1.4
Mcafee » Application And Change Control » Version: 6.1.7

cpe:2.3:a:mcafee:application_and_change_control:6.1.7
Mcafee » Application And Change Control » Version: 6.2.0

cpe:2.3:a:mcafee:application_and_change_control:6.2.0
Mcafee » Application And Change Control » Version: 6.2.1

cpe:2.3:a:mcafee:application_and_change_control:6.2.1
Mcafee » Application And Change Control » Version: 6.2.2

cpe:2.3:a:mcafee:application_and_change_control:6.2.2
Mcafee » Application And Change Control » Version: 6.3.0

cpe:2.3:a:mcafee:application_and_change_control:6.3.0
Mcafee » Application And Change Control » Version: 6.4.0

cpe:2.3:a:mcafee:application_and_change_control:6.4.0
Mcafee » Application And Change Control » Version: 6.4.1

cpe:2.3:a:mcafee:application_and_change_control:6.4.1
Mcafee » Application And Change Control » Version: 6.5

cpe:2.3:a:mcafee:application_and_change_control:6.5
Mcafee » Application And Change Control » Version: 7.0

cpe:2.3:a:mcafee:application_and_change_control:7.0
Mcafee » Application And Change Control » Version: 7.0.1

cpe:2.3:a:mcafee:application_and_change_control:7.0.1
Mcafee » Application And Change Control » Version: 7.0.2

cpe:2.3:a:mcafee:application_and_change_control:7.0.2
Mcafee » Application And Change Control » Version: 8.0

cpe:2.3:a:mcafee:application_and_change_control:8.0
Mcafee » Application And Change Control » Version: 8.1

cpe:2.3:a:mcafee:application_and_change_control:8.1
Mcafee » Application And Change Control » Version: 8.1.1

cpe:2.3:a:mcafee:application_and_change_control:8.1.1
Mcafee » Application And Change Control » Version: 8.2

cpe:2.3:a:mcafee:application_and_change_control:8.2
Mcafee » Application And Change Control » Version: 8.2.1

cpe:2.3:a:mcafee:application_and_change_control:8.2.1
Mcafee » Application And Change Control » Version: 8.3.0

cpe:2.3:a:mcafee:application_and_change_control:8.3.0
Mcafee » Application And Change Control » Version: 8.3.1

cpe:2.3:a:mcafee:application_and_change_control:8.3.1
Mcafee » Application And Change Control » Version: 8.3.2

cpe:2.3:a:mcafee:application_and_change_control:8.3.2
Mcafee » Application And Change Control » Version: 8.3.3

cpe:2.3:a:mcafee:application_and_change_control:8.3.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-31833

Products

Pricing

Contact Us