CVE-2023-40352

HIGH

Mcafee Safe Connect < 2.16.1.126 - Uncontrolled Search Path

Title source: rule

Description

McAfee Safe Connect before 2.16.1.126 may allow an adversary with system privileges to achieve privilege escalation by loading arbitrary DLLs.

References (2)

Scores

CVSS v3 7.2
EPSS 0.0019
EPSS Percentile 40.5%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Classification

CWE
CWE-427
Status published

Affected Products (1)

mcafee/safe_connect < 2.16.1.126

Timeline

Published Aug 21, 2023
Tracked Since Feb 18, 2026