CVE-2020-7312

DLL Search Order Hijacking Vulnerability in the installer in McAfee Agent (MA) for Windows prior to 5.6.6 allows local users to execute arbitrary code and escalate privileges via execution from a compromised folder.
Configurations

Configuration 1 (hide)

cpe:2.3:a:mcafee:mcafee_agent:*:*:*:*:*:windows:*:*

History

21 Nov 2024, 05:37

Type Values Removed Values Added
References () https://kc.mcafee.com/corporate/index?page=content&id=SB10325 - () https://kc.mcafee.com/corporate/index?page=content&id=SB10325 -

07 Nov 2023, 03:25

Type Values Removed Values Added
References (CONFIRM) https://kc.mcafee.com/corporate/index?page=content&id=SB10325 - Vendor Advisory () https://kc.mcafee.com/corporate/index?page=content&id=SB10325 -

Information

Published : 2020-09-10 10:15

Updated : 2024-11-21 05:37


NVD link : CVE-2020-7312

Mitre link : CVE-2020-7312

CVE.ORG link : CVE-2020-7312


JSON object : View

Products Affected

mcafee

  • mcafee_agent
CWE
CWE-427

Uncontrolled Search Path Element