CVE-2019-3592

3 documents3 sources

Severity

6.7MEDIUM

EPSS

0.1%

top 81.09%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Mcafee, LLC Mcafee Agent (ma)Mcafee Agent

Timeline

PublishedJul 18

Latest updateMay 24

Description

Privilege escalation vulnerability in McAfee Agent (MA) before 5.6.1 HF3, allows local administrator users to potentially disable some McAfee processes by manipulating the MA directory control and placing a carefully constructed file in the MA directory.

CVSS vector

CVSS:3.0/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:HExploitability: 0.6 | Impact: 6.0

Affected Packages2 packages

▶CVEListV5mcafee,_llc/mcafee_agent_(ma)5.x — 5.6.1 HF3

▶NVDmcafee/agent5.0.0 — 5.6.1

🔴Vulnerability Details

GHSA

GHSA-3v6v-w2x6-55vq: Privilege escalation vulnerability in McAfee Agent (MA) before 5↗2022-05-24

▶

CVEList

MA for Windows update addresses weak directory permissions↗2019-07-18

▶