CVE-2022-0166— Privilege escalation vulnerability in McAfee Agent
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2022-0166
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Privilege escalation vulnerability in McAfee Agent
Source: NVD (National Vulnerability Database)
Vulnerability Description
A privilege escalation vulnerability in the McAfee Agent prior to 5.7.5. McAfee Agent uses openssl.cnf during the build process to specify the OPENSSLDIR variable as a subdirectory within the installation directory. A low privilege user could have created subdirectories and executed arbitrary code with SYSTEM privileges by creating the appropriate pathway to the specifically created malicious openssl.cnf file.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Mcafee Agent 代码问题漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Mcafee McAfee Agent(MA)是美国迈克菲(Mcafee)公司的一套提供了ePolicy Orchestrator(杀毒软件管理平台)与被管理产品之间的安全通信的客户端组件。 McAfee Agent 5.7.5之前版本存在安全漏洞,该漏洞源于McAfee Agent在构建过程中使用openssl.cnf将OPENSSLDIR变量指定为安装目录中的子目录。低权限用户可以通过创建特定创建的恶意openssl.cnf文件的适当路径,创建子目录并使用SYSTEM权限执行任意代码。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| McAfee,LLC | McAfee Agent for Windows | unspecified ~ 5.7.5 | - |
II. Public POCs for CVE-2022-0166
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2022-0166
请登录查看更多情报信息。
- https://kc.mcafee.com/corporate/index?page=content&id=SB10378x_refsource_CONFIRM
- https://nvd.nist.gov/vuln/detail/CVE-2022-0166
IV. Related Vulnerabilities
Same product: McAfee Agent for Windows
- CVE-2022-1256
Improper Privilege Management in McAfee Agent for Windows - CVE-2021-31854
Code injection vulnerability in McAfee Agent - CVE-2021-31836
Improper Privilege Management in MA for Windows - CVE-2021-31847
Improper privilege management in repair process of MA for Wi - CVE-2021-31841
DLL side loading vulnerability in MA for Windows
Same vendor: McAfee,LLC
V. Comments for CVE-2022-0166
No comments yet