CVE-2021-31853

DLL Search Order Hijacking Vulnerability in McAfee Drive Encryption (MDE) prior to 7.3.0 HF2 (7.3.0.183) allows local users to execute arbitrary code and escalate privileges via execution from a compromised folder.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:mcafee:drive_encryption:*:*:*:*:*:*:*:*
cpe:2.3:a:mcafee:drive_encryption:7.3.0:-:*:*:*:*:*:*
cpe:2.3:a:mcafee:drive_encryption:7.3.0:hotfix1:*:*:*:*:*:*

History

21 Nov 2024, 06:06

Type Values Removed Values Added
References () https://kc.mcafee.com/corporate/index?page=content&id=SB10374 - Broken Link () https://kc.mcafee.com/corporate/index?page=content&id=SB10374 - Broken Link

15 Nov 2023, 20:21

Type Values Removed Values Added
CWE CWE-427
References () https://kc.mcafee.com/corporate/index?page=content&id=SB10374 - () https://kc.mcafee.com/corporate/index?page=content&id=SB10374 - Broken Link

07 Nov 2023, 03:35

Type Values Removed Values Added
References (CONFIRM) https://kc.mcafee.com/corporate/index?page=content&id=SB10374 - Vendor Advisory () https://kc.mcafee.com/corporate/index?page=content&id=SB10374 -
CWE CWE-427

Information

Published : 2021-11-10 09:15

Updated : 2024-11-21 06:06


NVD link : CVE-2021-31853

Mitre link : CVE-2021-31853

CVE.ORG link : CVE-2021-31853


JSON object : View

Products Affected

mcafee

  • drive_encryption
CWE
CWE-427

Uncontrolled Search Path Element