CVE-2021-31854

high Trellix
CVSS v3 Base Score
7.7
CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H
EPSS Score
0.3%
Exploitation probability in 30 days
Top 45% most likely to be exploited
Attack Characteristics
Attack Vector
Local
Attack Complexity
Low
Privileges Required
High
User Interaction
Required
Confidentiality
High
Integrity
High
Availability
High
Published: January 19, 2022 (1575 days ago)
Last Modified: February 24, 2026
Vendor: Trellix

Description

A command Injection Vulnerability in McAfee Agent (MA) for Windows prior to 5.7.5 allows local users to inject arbitrary shell code into the file cleanup.exe. The malicious clean.exe file is placed into the relevant folder and executed by running the McAfee Agent deployment feature located in the System Tree. An attacker may exploit the vulnerability to obtain a reverse shell which can lead to privilege escalation to obtain root privileges.

CWE

CWE-78

Affected Products

mcafee agent

References

🔗 kc.mcafee.com 🔗 kc.mcafee.com