CVE-2021-31839: Incorrect permissions on McAfee Agent for Windows event folder
First published: Thu Jun 10 2021(Updated: )
Improper privilege management vulnerability in McAfee Agent for Windows prior to 5.7.3 allows a local user to modify event information in the MA event folder. This allows a local user to either add false events or remove events from the event logs prior to them being sent to the ePO server.
Credit: psirt@mcafee.com trellixpsirt@trellix.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Mcafee Agent | >=5.0.0<5.7.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for this McAfee Agent for Windows vulnerability?
The vulnerability ID for this McAfee Agent for Windows vulnerability is CVE-2021-31839.
What is the title of this vulnerability?
The title of this vulnerability is 'Improper privilege management vulnerability in McAfee Agent for Windows prior to 5.7.3 allows a local user to modify event information in the MA event folder.'
What is the severity of CVE-2021-31839?
The severity of CVE-2021-31839 is medium with a severity value of 3.3.
How does CVE-2021-31839 affect McAfee Agent for Windows?
CVE-2021-31839 affects McAfee Agent for Windows prior to version 5.7.3.
How can this vulnerability be fixed?
To fix this vulnerability, update McAfee Agent for Windows to version 5.7.3 or later.
- collector/nvd-index
- collector/nvd-api
- agent/author
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/severity
- agent/weakness
- agent/last-modified-date
- agent/title
- agent/remedy
- agent/tags
- agent/event
- agent/first-publish-date
- agent/description
- vendor/mcafee
- canonical/mcafee agent
- version/mcafee agent/5.0.0