Vulnerability Details CVE-2021-31839
Improper privilege management vulnerability in McAfee Agent for Windows prior to 5.7.3 allows a local user to modify event information in the MA event folder. This allows a local user to either add false events or remove events from the event logs prior to them being sent to the ePO server.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 10.8%
CVSS Severity
CVSS v3 Score 4.8
CVSS v2 Score 2.1
References
Products affected by CVE-2021-31839
-
cpe:2.3:a:mcafee:agent:5.0.0
-
cpe:2.3:a:mcafee:agent:5.0.1
-
cpe:2.3:a:mcafee:agent:5.0.2
-
cpe:2.3:a:mcafee:agent:5.0.3
-
cpe:2.3:a:mcafee:agent:5.0.4
-
cpe:2.3:a:mcafee:agent:5.0.5
-
cpe:2.3:a:mcafee:agent:5.0.6
-
cpe:2.3:a:mcafee:agent:5.5.0
-
cpe:2.3:a:mcafee:agent:5.5.1
-
cpe:2.3:a:mcafee:agent:5.5.2
-
cpe:2.3:a:mcafee:agent:5.5.3
-
cpe:2.3:a:mcafee:agent:5.6.0
-
cpe:2.3:a:mcafee:agent:5.6.1
-
cpe:2.3:a:mcafee:agent:5.7.1