Vulnerabilities > CVE-2021-31839 - Unspecified vulnerability in Mcafee Agent

CVSS 3.3 - LOW

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

LOW

Availability impact

NONE

local

low complexity

mcafee

NVD

Published: 2021-06-10

Updated: 2023-11-15

Summary

Improper privilege management vulnerability in McAfee Agent for Windows prior to 5.7.3 allows a local user to modify event information in the MA event folder. This allows a local user to either add false events or remove events from the event logs prior to them being sent to the ePO server.

Vulnerable Configurations

Part	Description	Count
Application	Mcafee Mcafee Agent 5.0.0 Mcafee Agent 5.0.1 Mcafee Agent 5.0.2 Mcafee Agent 5.0.3 Mcafee Agent 5.0.4 Mcafee Agent 5.0.5 Mcafee Agent 5.0.6 Mcafee Agent 5.5.0 Mcafee Agent 5.5.1 Mcafee Agent 5.5.2 Mcafee Agent 5.5.3 Mcafee Agent 5.6.0 Mcafee Agent 5.6.1 Mcafee Agent 5.7.1	23

References

https://kc.mcafee.com/corporate/index?page=content&id=SB10362