CVE-2021-31839

CWE-269 — Improper Privilege Management3 documents3 sources

Severity

3.3LOW

EPSS

0.0%

top 88.42%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Mcafee,llc Mcafee Agent FOR Windows Mcafee Agent

Timeline

PublishedJun 10

Latest updateMay 24

Description

Improper privilege management vulnerability in McAfee Agent for Windows prior to 5.7.3 allows a local user to modify event information in the MA event folder. This allows a local user to either add false events or remove events from the event logs prior to them being sent to the ePO server.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:LExploitability: 1.3 | Impact: 3.4

Affected Packages2 packages

▶CVEListV5mcafee,llc/mcafee_agent_for_windowsunspecified — 5.7.3

▶NVDmcafee/agent5.0.0 — 5.7.3

🔴Vulnerability Details

GHSA

GHSA-gr8f-frhq-4h8r: Improper privilege management vulnerability in McAfee Agent for Windows prior to 5↗2022-05-24

▶

CVEList

Incorrect permissions on McAfee Agent for Windows event folder↗2021-06-10

▶