CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0CVE-2022-0280 – McAfee Total Protection (MTP) - File Deletion vulnerability
https://notcve.org/view.php?id=CVE-2022-0280
10 Mar 2022 — A race condition vulnerability exists in the QuickClean feature of McAfee Total Protection for Windows prior to 16.0.43 that allows a local user to gain privilege elevation and perform an arbitrary file delete. This could lead to sensitive files being deleted and potentially cause denial of service. This attack exploits the way symlinks are created and how the product works with them. Se presenta una vulnerabilidad de condición de carrera en la función QuickClean de McAfee Total Protection para Windows vers... • https://service.mcafee.com/?articleId=TS103271&page=shell&shell=article-view • CWE-367: Time-of-check Time-of-use (TOCTOU) Race Condition •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2022-0815 – McAfee WebAdvisor - Extension Fingerprinting vulnerability
https://notcve.org/view.php?id=CVE-2022-0815
10 Mar 2022 — Improper access control vulnerability in McAfee WebAdvisor Chrome and Edge browser extensions up to 8.1.0.1895 allows a remote attacker to gain access to McAfee WebAdvisor settings and other details about the user’s system. This could lead to unexpected behaviors including; settings being changed, fingerprinting of the system leading to targeted scams, and not triggering the malicious software if McAfee software is detected. Una vulnerabilidad de control de acceso inapropiada en las extensiones del navegado... • https://service.mcafee.com/?articleId=TS103273&page=shell&shell=article-view • CWE-668: Exposure of Resource to Wrong Sphere •
CVSS: 8.4EPSS: 0%CPEs: 3EXPL: 0CVE-2021-4088 – Blind SQL injection in DLP ePO extension
https://notcve.org/view.php?id=CVE-2021-4088
24 Jan 2022 — SQL injection vulnerability in Data Loss Protection (DLP) ePO extension 11.8.x prior to 11.8.100, 11.7.x prior to 11.7.101, and 11.6.401 allows a remote authenticated attacker to inject unfiltered SQL into the DLP part of the ePO database. This could lead to remote code execution on the ePO server with privilege escalation. Una vulnerabilidad de inyección SQL en la extensión de ePO de Data Loss Protection (DLP) versiones 11.8.x anteriores a 11.8.100, versiones 11.7.x anteriores a 11.7.101 y versiones 11.6.4... • https://kc.mcafee.com/corporate/index?page=content&id=SB10376 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 7.8EPSS: 1%CPEs: 1EXPL: 0CVE-2022-0166 – Privilege escalation vulnerability in McAfee Agent
https://notcve.org/view.php?id=CVE-2022-0166
19 Jan 2022 — A privilege escalation vulnerability in the McAfee Agent prior to 5.7.5. McAfee Agent uses openssl.cnf during the build process to specify the OPENSSLDIR variable as a subdirectory within the installation directory. A low privilege user could have created subdirectories and executed arbitrary code with SYSTEM privileges by creating the appropriate pathway to the specifically created malicious openssl.cnf file. Una vulnerabilidad de escalada de privilegios en McAfee Agent versiones anteriores a 5.7.5. McAfee... • https://kc.mcafee.com/corporate/index?page=content&id=SB10378 • CWE-427: Uncontrolled Search Path Element •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2021-31854 – Code injection vulnerability in McAfee Agent
https://notcve.org/view.php?id=CVE-2021-31854
19 Jan 2022 — A command Injection Vulnerability in McAfee Agent (MA) for Windows prior to 5.7.5 allows local users to inject arbitrary shell code into the file cleanup.exe. The malicious clean.exe file is placed into the relevant folder and executed by running the McAfee Agent deployment feature located in the System Tree. An attacker may exploit the vulnerability to obtain a reverse shell which can lead to privilege escalation to obtain root privileges. Una vulnerabilidad de inyección de comandos en McAfee Agent (MA) pa... • https://kc.mcafee.com/corporate/index?page=content&id=SB10378 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 7.4EPSS: 0%CPEs: 1EXPL: 0CVE-2022-0129 – DLL Highjack vulnerability in McAfee TechCheck utility
https://notcve.org/view.php?id=CVE-2022-0129
11 Jan 2022 — Uncontrolled search path element vulnerability in McAfee TechCheck prior to 4.0.0.2 allows a local administrator to load their own Dynamic Link Library (DLL) gaining elevation of privileges to system user. This was achieved through placing the malicious DLL in the same directory that the process was run from. Una vulnerabilidad del elemento de ruta de búsqueda no controlada en McAfee TechCheck versiones anteriores a 4.0.0.2, permite que un administrador local cargue su propia biblioteca de enlaces dinámicos... • https://service.mcafee.com/?articleId=TS103243 • CWE-427: Uncontrolled Search Path Element •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2021-31833
https://notcve.org/view.php?id=CVE-2021-31833
04 Jan 2022 — Potential product security bypass vulnerability in McAfee Application and Change Control (MACC) prior to version 8.3.4 allows a locally logged in attacker to circumvent the application solidification protection provided by MACC, permitting them to run applications that would usually be prevented by MACC. This would require the attacker to rename the specified binary to match name of any configured updater and perform a specific set of steps, resulting in the renamed binary to be to run. Una posible vulnerab... • https://kc.mcafee.com/corporate/index?page=content&id=SB10370 • CWE-269: Improper Privilege Management •
CVSS: 4.8EPSS: 0%CPEs: 1EXPL: 0CVE-2021-4038 – NSM vulnerable to XSS
https://notcve.org/view.php?id=CVE-2021-4038
09 Dec 2021 — Cross Site Scripting (XSS) vulnerability in McAfee Network Security Manager (NSM) prior to 10.1 Minor 7 allows a remote authenticated administrator to embed a XSS in the administrator interface via specially crafted custom rules containing HTML. NSM did not correctly sanitize custom rule content in all scenarios. Una vulnerabilidad de tipo Cross Site Scripting (XSS) en McAfee Network Security Manager (NSM) versiones anteriores a 10.1 Minor 7, permite a un administrador remoto autenticado insertar una vulner... • https://kc.mcafee.com/corporate/index?page=content&id=SB10375 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.1EPSS: 0%CPEs: 2EXPL: 0CVE-2021-31850 – Denial of Service in Database Security on Windows
https://notcve.org/view.php?id=CVE-2021-31850
08 Dec 2021 — A denial-of-service vulnerability in Database Security (DBS) prior to 4.8.4 allows a remote authenticated administrator to trigger a denial-of-service attack against the DBS server. The configuration of Archiving through the User interface incorrectly allowed the creation of directories and files in Windows system directories and other locations where sensitive data could be overwritten. The former could lead to a DoS, whilst the latter could lead to data destruction on the DBS server. Una vulnerabilidad de... • https://kc.mcafee.com/corporate/index?page=content&id=SB10358 • CWE-552: Files or Directories Accessible to External Parties •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0CVE-2021-31851 – Cross-Site Scripting vulnerability in Policy Auditor
https://notcve.org/view.php?id=CVE-2021-31851
23 Nov 2021 — A Reflected Cross-Site Scripting vulnerability in McAfee Policy Auditor prior to 6.5.2 allows a remote unauthenticated attacker to inject arbitrary web script or HTML via the profileNodeID request parameters. The malicious script is reflected unmodified into the Policy Auditor web-based interface which could lead to the extraction of end user session token or login credentials. These may be used to access additional security-critical applications or conduct arbitrary cross-domain requests. Una vulnerabilida... • https://kc.mcafee.com/corporate/index?page=content&id=SB10372 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •