cbcvebase.
CVE-2009-5115
published 2012-08-22

CVE-2009-5115: McAfee Common Management Agent (CMA) 3.5.5 through 3.5.5.588 and 3.6.0 through 3.6.0.608, and McAfee Agent 4.0 before Patch 3, allows remote authenticated…

PriorityP430medium6.5CVSS 2.0
AVNACLAuSCPIPAP
EPSS
1.07%
60.5th percentile
McAfee Common Management Agent (CMA) 3.5.5 through 3.5.5.588 and 3.6.0 through 3.6.0.608, and McAfee Agent 4.0 before Patch 3, allows remote authenticated users to overwrite arbitrary files by accessing a report-writing ActiveX control COM object.

Affected

12 ranges
VendorProductVersion rangeFixed in
mcafeecommon_management_agent
mcafeecommon_management_agent
mcafeecommon_management_agent
mcafeecommon_management_agent
mcafeecommon_management_agent
mcafeecommon_management_agent
mcafeecommon_management_agent
mcafeecommon_management_agent
mcafeecommon_management_agent
mcafeecommon_management_agent
mcafeecommon_management_agent
mcafeecommon_management_agent
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.