CVE-2021-31838: Command injection through environment variable in MVISION EDR
First published: Tue Jun 29 2021(Updated: )
A command injection vulnerability in MVISION EDR (MVEDR) prior to 3.4.0 allows an authenticated MVEDR administrator to trigger the EDR client to execute arbitrary commands through PowerShell using the EDR functionality 'execute reaction'.
Credit: psirt@mcafee.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| McAfee MVISION EDR | <3.4.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2021-31838?
CVE-2021-31838 is classified as a high severity vulnerability due to the potential for command execution.
How do I fix CVE-2021-31838?
To fix CVE-2021-31838, update McAfee MVISION EDR to version 3.4.0 or later.
Who is affected by CVE-2021-31838?
CVE-2021-31838 affects authenticated administrators of McAfee MVISION EDR versions prior to 3.4.0.
What type of vulnerability is CVE-2021-31838?
CVE-2021-31838 is a command injection vulnerability that allows the execution of arbitrary commands.
What can attackers achieve with CVE-2021-31838?
Attackers can exploit CVE-2021-31838 to execute arbitrary commands on the system through PowerShell.
- agent/weakness
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/author
- agent/severity
- agent/last-modified-date
- agent/title
- agent/event
- agent/first-publish-date
- agent/description
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/mcafee
- canonical/mcafee mvision edr