CVE-2018-6706

Summary

Insecure handling of temporary files in non-Windows McAfee Agent 5.0.0 through 5.0.6, 5.5.0, and 5.5.1 allows an Unprivileged User to introduce custom paths during agent installation in Linux via unspecified vectors.

Affected Software

VendorProductVersion RangeStatus
McAfeeMcAfee Agent (MA) for Linux5.5.0affected
McAfeeMcAfee Agent (MA) for Linux5.5.1affected
McAfeeMcAfee Agent (MA) for Linux5.0.0 < 5.0.0*affected
McAfeeMcAfee Agent (MA) for Linux5.0.6 <= 5.0.6affected

Weaknesses

  • CWE-377: Insecure Temporary File (CWE-377)

ADP Enrichment

CVE Program Container

Additional References

References