Mcafee: >> Mcafee Agent >> 5.7.3 Security Vulnerabilities
Improper privilege management vulnerability in maconfig for McAfee Agent for Windows prior to 5.7.4 allows a local user to gain access to sensitive information. The utility was able to be run from any location on the file system and by a low privileged user.
CVSS Score
5.6
EPSS Score
0.0
Published
2021-09-22
A DLL sideloading vulnerability in McAfee Agent for Windows prior to 5.7.4 could allow a local user to perform a DLL sideloading attack with an unsigned DLL with a specific name and in a specific location. This would result in the user gaining elevated permissions and the ability to execute arbitrary code as the system user, through not checking the DLL signature.
CVSS Score
8.2
EPSS Score
0.0
Published
2021-09-22