Mcafee Llc Mcafee Agent vulnerabilities
8 known vulnerabilities affecting mcafee_llc/mcafee_agent.
Total CVEs
8
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH2MEDIUM5
Vulnerabilities
Page 1 of 1
CVE-2022-1257MEDIUMCVSS 5.5PoC≥ unspecified, < 5.7.62022-04-14
CVE-2022-1257 [MEDIUM] CWE-922 CVE-2022-1257: Insecure storage of sensitive information vulnerability in MA for Linux, macOS, and Windows prior to
Insecure storage of sensitive information vulnerability in MA for Linux, macOS, and Windows prior to 5.7.6 allows a local user to gain access to sensitive information through storage in ma.db. The sensitive information has been moved to encrypted database files.
cvelistv5nvd
CVE-2020-7343MEDIUMCVSS 5.5≥ 5.7.x, < 5.7.12021-01-18
CVE-2020-7343 [MEDIUM] CWE-862 CVE-2020-7343: Missing Authorization vulnerability in McAfee Agent (MA) for Windows prior to 5.7.1 allows local use
Missing Authorization vulnerability in McAfee Agent (MA) for Windows prior to 5.7.1 allows local users to block McAfee product updates by manipulating a directory used by MA for temporary files. The product would continue to function with out-of-date detection files.
cvelistv5nvd
CVE-2019-3613HIGHCVSS 7.3≥ 5.6.x, < 5.6.42020-06-10
CVE-2019-3613 [HIGH] CWE-427 CVE-2019-3613: DLL Search Order Hijacking vulnerability in McAfee Agent (MA) prior to 5.6.4 allows attackers with l
DLL Search Order Hijacking vulnerability in McAfee Agent (MA) prior to 5.6.4 allows attackers with local access to execute arbitrary code via execution from a compromised folder.
cvelistv5nvd
CVE-2020-7253MEDIUMCVSS 4.4≥ 5.6.x, < 5.6.42020-03-12
CVE-2020-7253 [MEDIUM] CWE-284 CVE-2020-7253: Improper access control vulnerability in masvc.exe in McAfee Agent (MA) prior to 5.6.4 allows local
Improper access control vulnerability in masvc.exe in McAfee Agent (MA) prior to 5.6.4 allows local users with administrator privileges to disable self-protection via a McAfee supplied command-line utility.
cvelistv5nvd
CVE-2019-3592MEDIUMCVSS 6.7≥ 5.x, < 5.6.1 HF32019-07-18
CVE-2019-3592 [MEDIUM] CVE-2019-3592: Privilege escalation vulnerability in McAfee Agent (MA) before 5.6.1 HF3, allows local administrator
Privilege escalation vulnerability in McAfee Agent (MA) before 5.6.1 HF3, allows local administrator users to potentially disable some McAfee processes by manipulating the MA directory control and placing a carefully constructed file in the MA directory.
cvelistv5nvd
CVE-2019-3599HIGHCVSS 7.5≥ 5.x, < 5.6.0 HF12019-02-28
CVE-2019-3599 [HIGH] CVE-2019-3599: Information Disclosure vulnerability in Remote logging (which is disabled by default) in McAfee Agen
Information Disclosure vulnerability in Remote logging (which is disabled by default) in McAfee Agent (MA) 5.x allows remote unauthenticated users to access sensitive information via remote logging when it is enabled.
cvelistv5nvd
CVE-2019-3598MEDIUMCVSS 5.3≥ 5.x, < 5.6.0 HF12019-02-28
CVE-2019-3598 [MEDIUM] CWE-119 CVE-2019-3598: Buffer Access with Incorrect Length Value in McAfee Agent (MA) 5.x allows remote unauthenticated use
Buffer Access with Incorrect Length Value in McAfee Agent (MA) 5.x allows remote unauthenticated users to potentially cause a denial of service via specifically crafted UDP packets.
cvelistv5nvd
CVE-2018-6703CRITICALCVSS 9.8≥ 5.x, < 5.6.02018-12-11
CVE-2018-6703 [CRITICAL] CWE-416 CVE-2018-6703: Use After Free in Remote logging (which is disabled by default) in McAfee McAfee Agent (MA) 5.x prio
Use After Free in Remote logging (which is disabled by default) in McAfee McAfee Agent (MA) 5.x prior to 5.6.0 allows remote unauthenticated attackers to cause a Denial of Service and potentially a remote code execution via a specially crafted HTTP header sent to the logging service.
cvelistv5nvd