1. CVE-Search
  2. CVE-2020-7343
ID CVE-2020-7343
Summary Missing Authorization vulnerability in McAfee Agent (MA) for Windows prior to 5.7.1 allows local users to block McAfee product updates by manipulating a directory used by MA for temporary files. The product would continue to function with out-of-date detection files.
References
Vulnerable Configurations
  • cpe:2.3:a:mcafee:agent:-:*:*:*:*:windows:*:*
    cpe:2.3:a:mcafee:agent:-:*:*:*:*:windows:*:*
  • cpe:2.3:a:mcafee:agent:5.0.0:*:*:*:*:windows:*:*
    cpe:2.3:a:mcafee:agent:5.0.0:*:*:*:*:windows:*:*
  • cpe:2.3:a:mcafee:agent:5.0.1:*:*:*:*:windows:*:*
    cpe:2.3:a:mcafee:agent:5.0.1:*:*:*:*:windows:*:*
  • cpe:2.3:a:mcafee:agent:5.0.1:hotfix1:*:*:*:windows:*:*
    cpe:2.3:a:mcafee:agent:5.0.1:hotfix1:*:*:*:windows:*:*
  • cpe:2.3:a:mcafee:agent:5.0.2:*:*:*:*:windows:*:*
    cpe:2.3:a:mcafee:agent:5.0.2:*:*:*:*:windows:*:*
  • cpe:2.3:a:mcafee:agent:5.0.3:*:*:*:*:windows:*:*
    cpe:2.3:a:mcafee:agent:5.0.3:*:*:*:*:windows:*:*
  • cpe:2.3:a:mcafee:agent:5.0.4:*:*:*:*:windows:*:*
    cpe:2.3:a:mcafee:agent:5.0.4:*:*:*:*:windows:*:*
  • cpe:2.3:a:mcafee:agent:5.0.4:-:*:*:*:windows:*:*
    cpe:2.3:a:mcafee:agent:5.0.4:-:*:*:*:windows:*:*
  • cpe:2.3:a:mcafee:agent:5.0.4:hotfix1:*:*:*:windows:*:*
    cpe:2.3:a:mcafee:agent:5.0.4:hotfix1:*:*:*:windows:*:*
  • cpe:2.3:a:mcafee:agent:5.0.5:*:*:*:*:windows:*:*
    cpe:2.3:a:mcafee:agent:5.0.5:*:*:*:*:windows:*:*
  • cpe:2.3:a:mcafee:agent:5.0.6:*:*:*:*:windows:*:*
    cpe:2.3:a:mcafee:agent:5.0.6:*:*:*:*:windows:*:*
  • cpe:2.3:a:mcafee:agent:5.5.0:*:*:*:*:windows:*:*
    cpe:2.3:a:mcafee:agent:5.5.0:*:*:*:*:windows:*:*
  • cpe:2.3:a:mcafee:agent:5.5.1:*:*:*:*:windows:*:*
    cpe:2.3:a:mcafee:agent:5.5.1:*:*:*:*:windows:*:*
  • cpe:2.3:a:mcafee:agent:5.5.2:*:*:*:*:windows:*:*
    cpe:2.3:a:mcafee:agent:5.5.2:*:*:*:*:windows:*:*
  • cpe:2.3:a:mcafee:agent:5.5.3:*:*:*:*:windows:*:*
    cpe:2.3:a:mcafee:agent:5.5.3:*:*:*:*:windows:*:*
  • cpe:2.3:a:mcafee:agent:5.6.0:*:*:*:*:windows:*:*
    cpe:2.3:a:mcafee:agent:5.6.0:*:*:*:*:windows:*:*
  • cpe:2.3:a:mcafee:agent:5.6.0:-:*:*:*:windows:*:*
    cpe:2.3:a:mcafee:agent:5.6.0:-:*:*:*:windows:*:*
  • cpe:2.3:a:mcafee:agent:5.6.0:hotfix1:*:*:*:windows:*:*
    cpe:2.3:a:mcafee:agent:5.6.0:hotfix1:*:*:*:windows:*:*
  • cpe:2.3:a:mcafee:agent:5.6.0:hotfix2:*:*:*:windows:*:*
    cpe:2.3:a:mcafee:agent:5.6.0:hotfix2:*:*:*:windows:*:*
  • cpe:2.3:a:mcafee:agent:5.6.1:-:*:*:*:windows:*:*
    cpe:2.3:a:mcafee:agent:5.6.1:-:*:*:*:windows:*:*
  • cpe:2.3:a:mcafee:agent:5.6.1:hotfix1:*:*:*:windows:*:*
    cpe:2.3:a:mcafee:agent:5.6.1:hotfix1:*:*:*:windows:*:*
  • cpe:2.3:a:mcafee:agent:5.6.1:hotfix2:*:*:*:windows:*:*
    cpe:2.3:a:mcafee:agent:5.6.1:hotfix2:*:*:*:windows:*:*
  • cpe:2.3:a:mcafee:agent:5.6.1:hotfix3:*:*:*:windows:*:*
    cpe:2.3:a:mcafee:agent:5.6.1:hotfix3:*:*:*:windows:*:*
CVSS
Base: 2.1 (as of 26-01-2021 - 21:06)
Impact:
Exploitability:
CWE CWE-862
CAPEC
Access
VectorComplexityAuthentication
LOCAL LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE PARTIAL NONE
cvss-vector via4 AV:L/AC:L/Au:N/C:N/I:P/A:N
refmap via4
confirm https://kc.mcafee.com/corporate/index?page=content&id=SB10343
Last major update 26-01-2021 - 21:06
Published 18-01-2021 - 13:15
Last modified 26-01-2021 - 21:06
Back to Top