CVE-2021-23892

By exploiting a time of check to time of use (TOCTOU) race condition during the Endpoint Security for Linux Threat Prevention and Firewall (ENSL TP/FW) installation process, a local user can perform a privilege escalation attack to obtain administrator privileges for the purpose of executing arbitrary code through insecure use of predictable temporary file locations.
Configurations

Configuration 1 (hide)

cpe:2.3:o:mcafee:endpoint_security_for_linux_threat_prevention:*:*:*:*:*:linux:*:*

History

07 Nov 2023, 03:30

Type Values Removed Values Added
CWE CWE-59
References (CONFIRM) https://kc.mcafee.com/corporate/index?page=content&id=SB10355 - Vendor Advisory () https://kc.mcafee.com/corporate/index?page=content&id=SB10355 -
Summary By exploiting a time of check to time of use (TOCTOU) race condition during the Endpoint Security for Linux Threat Prevention and Firewall (ENSL TP/FW) installation process, a local user can perform a privilege escalation attack to obtain administrator privileges for the purpose of executing arbitrary code through insecure use of predictable temporary file locations. By exploiting a time of check to time of use (TOCTOU) race condition during the Endpoint Security for Linux Threat Prevention and Firewall (ENSL TP/FW) installation process, a local user can perform a privilege escalation attack to obtain administrator privileges for the purpose of executing arbitrary code through insecure use of predictable temporary file locations.

Information

Published : 2021-05-12 09:15

Updated : 2024-02-28 18:28


NVD link : CVE-2021-23892

Mitre link : CVE-2021-23892

CVE.ORG link : CVE-2021-23892


JSON object : View

Products Affected

mcafee

  • endpoint_security_for_linux_threat_prevention
CWE
CWE-367

Time-of-check Time-of-use (TOCTOU) Race Condition

CWE-59

Improper Link Resolution Before File Access ('Link Following')