CVE-2018-6700

DLL Search Order Hijacking vulnerability in Microsoft Windows Client in McAfee True Key (TK) before 5.1.165 allows local users to execute arbitrary code via specially crafted malware.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.8 HIGH
LOCAL
LOW
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
trellixCNA
7.5 HIGH
LOCAL
HIGH
LOW
CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 57%
VendorProductVersion
mcafeetrue_key
𝑥
< 5.1.165
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://service.mcafee.com/webcenter/portal/cp/home/articleview?articleId=TS102846
https://service.mcafee.com/webcenter/portal/cp/home/articleview?articleId=TS102846