Security Advisory

CVE-2022-0129

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-01-11 17:10:10

Last updated 2024-08-02 23:18:41

Assigner trellix

State PUBLISHED

Description

Uncontrolled search path element vulnerability in McAfee TechCheck prior to 4.0.0.2 allows a local administrator to load their own Dynamic Link Library (DLL) gaining elevation of privileges to system user. This was achieved through placing the malicious DLL in the same directory that the process was run from.

← Browse all CVEs View on cve.org ↗