CVE-2018-6707

EUVD-2018-18454
Denial of Service through Resource Depletion vulnerability in the agent in non-Windows McAfee Agent (MA) 5.0.0 through 5.0.6, 5.5.0, and 5.5.1 allows local users to cause DoS, unexpected behavior, or potentially unauthorized code execution via knowledge of the internal trust mechanism.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
3.7 LOW
LOCAL
HIGH
HIGH
CVSS:3.0/AV:L/AC:H/PR:H/UI:R/S:C/C:L/I:N/A:L
trellixCNA
3.7 LOW
LOCAL
HIGH
HIGH
CVSS:3.0/AV:L/AC:H/PR:H/UI:R/S:C/C:L/I:N/A:L
Base Score
CVSS 3.x
EPSS Score
Percentile: 10%
Affected Products (NVD)
VendorProductVersion
mcafeeagent
5.0.0 ≤
𝑥
≤ 5.0.6
mcafeeagent
5.5.0
mcafeeagent
5.5.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.securityfocus.com/bid/106307
https://kc.mcafee.com/corporate/index?page=content&id=SB10260
http://www.securityfocus.com/bid/106307
https://kc.mcafee.com/corporate/index?page=content&id=SB10260