CVE-2018-6755
HIGHMcafee True Key < 5.1.230.7 - Incorrect Permission Assignment
Title source: ruleDescription
Weak Directory Permission Vulnerability in Microsoft Windows client in McAfee True Key (TK) 5.1.230.7 and earlier allows local users to execute arbitrary code via specially crafted malware.
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by Google Security Research · textlocalwindows
https://www.exploit-db.com/exploits/45961
References (2)
Core 2
Core References
Exploit, Third Party Advisory exploit
x_refsource_exploit-db
https://www.exploit-db.com/exploits/45961/
Various Sources x_refsource_confirm
http://service.mcafee.com/FAQDocument.aspx?&id=TS102872
Scores
CVSS v3
7.2
EPSS
0.0004
EPSS Percentile
11.8%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H
Details
CWE
CWE-732
Status
published
Products (1)
mcafee/true_key
< 5.1.230.7
Published
Dec 06, 2018
Tracked Since
Feb 18, 2026