Mcafee Application And Change Control (Macc)
Approved changes feed: RSS · Atom
cpe:2.3:a:mcafee,llc:mcafee_application_and_change_control_(macc):*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Mcafee,Llc (a07eec98-d34c-5045-9a0e-859fd3b6002d) |
|---|---|
| Product | Mcafee Application And Change Control (Macc) (638c256a-be6a-5774-a6db-e2d307f37c32) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2021-31833 |
vulnerable | 2026-06-03 14:44:33.594118 |
Details available
HIGH (7.1)
Potential product security bypass vulnerability in McAfee Application and Change Control (MACC) prior to version 8.3.4 allows a locally logged in attacker to circumvent the application solidification protection provided by MACC, permitting them to run applications that would usually be prevented by MACC. This would require the attacker to rename the specified binary to match name of any configured updater and perform a specific set of steps, resulting in the renamed binary to be to run.
Published: 2022-01-04T09:45:12.000Z
Updated: 2024-08-03T23:10:30.836Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-7334 |
vulnerable | 2026-06-03 14:43:06.058707 |
Improper privilege assignment vulnerability in the installer component of MACC
HIGH (7.7)
Improper privilege assignment vulnerability in the installer McAfee Application and Change Control (MACC) prior to 8.3.2 allows local administrators to change or update the configuration settings via a carefully constructed MSI configured to mimic the genuine installer. This version adds further controls for installation/uninstallation of software.
Published: 2020-10-15T09:05:17.539Z
Updated: 2024-09-16T22:45:11.642Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.