Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2021-31847

Improper access control vulnerability in the repair process for McAfee Agent for Windows prior to 5.7.4 could allow a local attacker to perform a DLL preloading attack using unsigned DLLs. This would result in elevation of privileges and the ability to execute arbitrary code as the system user, through not correctly protecting a temporary directory used in the repair process and not checking the DLL signature.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 8.3%
CVSS Severity
CVSS v3 Score 8.2
CVSS v2 Score 6.9
Products affected by CVE-2021-31847
  • Mcafee » Agent » Version: N/A
    cpe:2.3:a:mcafee:agent:-
  • Mcafee » Agent » Version: 5.0.0
    cpe:2.3:a:mcafee:agent:5.0.0
  • Mcafee » Agent » Version: 5.0.1
    cpe:2.3:a:mcafee:agent:5.0.1
  • Mcafee » Agent » Version: 5.0.2
    cpe:2.3:a:mcafee:agent:5.0.2
  • Mcafee » Agent » Version: 5.0.3
    cpe:2.3:a:mcafee:agent:5.0.3
  • Mcafee » Agent » Version: 5.0.4
    cpe:2.3:a:mcafee:agent:5.0.4
  • Mcafee » Agent » Version: 5.0.5
    cpe:2.3:a:mcafee:agent:5.0.5
  • Mcafee » Agent » Version: 5.0.6
    cpe:2.3:a:mcafee:agent:5.0.6
  • Mcafee » Agent » Version: 5.5.0
    cpe:2.3:a:mcafee:agent:5.5.0
  • Mcafee » Agent » Version: 5.5.1
    cpe:2.3:a:mcafee:agent:5.5.1
  • Mcafee » Agent » Version: 5.5.2
    cpe:2.3:a:mcafee:agent:5.5.2
  • Mcafee » Agent » Version: 5.5.3
    cpe:2.3:a:mcafee:agent:5.5.3
  • Mcafee » Agent » Version: 5.6.0
    cpe:2.3:a:mcafee:agent:5.6.0
  • Mcafee » Agent » Version: 5.6.1
    cpe:2.3:a:mcafee:agent:5.6.1
  • Mcafee » Agent » Version: 5.7.1
    cpe:2.3:a:mcafee:agent:5.7.1


Products
Pricing
Contact Us

Shodan ® - All rights reserved