1. CVE-Search
  2. CVE-2018-6706
ID CVE-2018-6706
Summary Insecure handling of temporary files in non-Windows McAfee Agent 5.0.0 through 5.0.6, 5.5.0, and 5.5.1 allows an Unprivileged User to introduce custom paths during agent installation in Linux via unspecified vectors.
References
Vulnerable Configurations
  • cpe:2.3:a:mcafee:agent:5.5.1:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:agent:5.5.1:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:agent:5.5.0:*:*:*:*:*:*:*
    cpe:2.3:a:mcafee:agent:5.5.0:*:*:*:*:*:*:*
  • cpe:2.3:a:mcafee:agent:5.0.0:*:*:*:*:-:*:*
    cpe:2.3:a:mcafee:agent:5.0.0:*:*:*:*:-:*:*
  • cpe:2.3:a:mcafee:agent:5.0.0:*:*:*:*:linux:*:*
    cpe:2.3:a:mcafee:agent:5.0.0:*:*:*:*:linux:*:*
  • cpe:2.3:a:mcafee:agent:5.0.0:*:*:*:*:windows:*:*
    cpe:2.3:a:mcafee:agent:5.0.0:*:*:*:*:windows:*:*
  • cpe:2.3:a:mcafee:agent:5.0.1:*:*:*:*:-:*:*
    cpe:2.3:a:mcafee:agent:5.0.1:*:*:*:*:-:*:*
  • cpe:2.3:a:mcafee:agent:5.0.1:*:*:*:*:windows:*:*
    cpe:2.3:a:mcafee:agent:5.0.1:*:*:*:*:windows:*:*
  • cpe:2.3:a:mcafee:agent:5.0.1:hotfix1:*:*:*:windows:*:*
    cpe:2.3:a:mcafee:agent:5.0.1:hotfix1:*:*:*:windows:*:*
  • cpe:2.3:a:mcafee:agent:5.0.2:*:*:*:*:-:*:*
    cpe:2.3:a:mcafee:agent:5.0.2:*:*:*:*:-:*:*
  • cpe:2.3:a:mcafee:agent:5.0.2:*:*:*:*:linux:*:*
    cpe:2.3:a:mcafee:agent:5.0.2:*:*:*:*:linux:*:*
  • cpe:2.3:a:mcafee:agent:5.0.2:*:*:*:*:mac_os:*:*
    cpe:2.3:a:mcafee:agent:5.0.2:*:*:*:*:mac_os:*:*
  • cpe:2.3:a:mcafee:agent:5.0.2:*:*:*:*:windows:*:*
    cpe:2.3:a:mcafee:agent:5.0.2:*:*:*:*:windows:*:*
  • cpe:2.3:a:mcafee:agent:5.0.3:*:*:*:*:-:*:*
    cpe:2.3:a:mcafee:agent:5.0.3:*:*:*:*:-:*:*
  • cpe:2.3:a:mcafee:agent:5.0.3:*:*:*:*:linux:*:*
    cpe:2.3:a:mcafee:agent:5.0.3:*:*:*:*:linux:*:*
  • cpe:2.3:a:mcafee:agent:5.0.3:*:*:*:*:windows:*:*
    cpe:2.3:a:mcafee:agent:5.0.3:*:*:*:*:windows:*:*
  • cpe:2.3:a:mcafee:agent:5.0.4:*:*:*:*:-:*:*
    cpe:2.3:a:mcafee:agent:5.0.4:*:*:*:*:-:*:*
  • cpe:2.3:a:mcafee:agent:5.0.4:*:*:*:*:linux:*:*
    cpe:2.3:a:mcafee:agent:5.0.4:*:*:*:*:linux:*:*
  • cpe:2.3:a:mcafee:agent:5.0.4:*:*:*:*:windows:*:*
    cpe:2.3:a:mcafee:agent:5.0.4:*:*:*:*:windows:*:*
  • cpe:2.3:a:mcafee:agent:5.0.4:-:*:*:*:windows:*:*
    cpe:2.3:a:mcafee:agent:5.0.4:-:*:*:*:windows:*:*
  • cpe:2.3:a:mcafee:agent:5.0.4:hotfix1:*:*:*:windows:*:*
    cpe:2.3:a:mcafee:agent:5.0.4:hotfix1:*:*:*:windows:*:*
  • cpe:2.3:a:mcafee:agent:5.0.5:*:*:*:*:-:*:*
    cpe:2.3:a:mcafee:agent:5.0.5:*:*:*:*:-:*:*
  • cpe:2.3:a:mcafee:agent:5.0.5:*:*:*:*:linux:*:*
    cpe:2.3:a:mcafee:agent:5.0.5:*:*:*:*:linux:*:*
  • cpe:2.3:a:mcafee:agent:5.0.5:*:*:*:*:windows:*:*
    cpe:2.3:a:mcafee:agent:5.0.5:*:*:*:*:windows:*:*
  • cpe:2.3:a:mcafee:agent:5.0.6:*:*:*:*:-:*:*
    cpe:2.3:a:mcafee:agent:5.0.6:*:*:*:*:-:*:*
  • cpe:2.3:a:mcafee:agent:5.0.6:*:*:*:*:linux:*:*
    cpe:2.3:a:mcafee:agent:5.0.6:*:*:*:*:linux:*:*
  • cpe:2.3:a:mcafee:agent:5.0.6:*:*:*:*:windows:*:*
    cpe:2.3:a:mcafee:agent:5.0.6:*:*:*:*:windows:*:*
CVSS
Base: 5.0 (as of 27-01-2023 - 18:27)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE PARTIAL NONE
cvss-vector via4 AV:N/AC:L/Au:N/C:N/I:P/A:N
refmap via4
bid 106328
confirm https://kc.mcafee.com/corporate/index?page=content&id=SB10260
Last major update 27-01-2023 - 18:27
Published 12-12-2018 - 23:29
Last modified 27-01-2023 - 18:27
Back to Top