Vulnerability-Lookup

CVE-2022-0129 (GCVE-0-2022-0129)

Vulnerability from cvelistv5 – Published: 2022-01-11 17:10 – Updated: 2024-08-02 23:18

Title

DLL Highjack vulnerability in McAfee TechCheck utility

Summary

Uncontrolled search path element vulnerability in McAfee TechCheck prior to 4.0.0.2 allows a local administrator to load their own Dynamic Link Library (DLL) gaining elevation of privileges to system user. This was achieved through placing the malicious DLL in the same directory that the process was run from.

Severity ?

7.4 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:N/I:H/A:H

CWE

CWE-427 - Uncontrolled Search Path Element

Assigner

trellix

References

URL

Tags

https://service.mcafee.com/?articleId=TS103243

x_refsource_CONFIRM

Impacted products

	Vendor	Product	Version
	McAfee,LLC	McAfee TechCheck	Affected: unspecified , < 4.0.0.2 (custom)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T23:18:41.751Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://service.mcafee.com/?articleId=TS103243"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "McAfee TechCheck",
          "vendor": "McAfee,LLC",
          "versions": [
            {
              "lessThan": "4.0.0.2",
              "status": "affected",
              "version": "unspecified",
              "versionType": "custom"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Uncontrolled search path element vulnerability in McAfee TechCheck prior to 4.0.0.2 allows a local administrator to load their own Dynamic Link Library (DLL) gaining elevation of privileges to system user. This was achieved through placing the malicious DLL in the same directory that the process was run from."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "HIGH",
            "privilegesRequired": "HIGH",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:N/I:H/A:H",
            "version": "3.1"
          }
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-427",
              "description": "CWE-427: Uncontrolled Search Path Element",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2022-01-11T17:10:10.000Z",
        "orgId": "01626437-bf8f-4d1c-912a-893b5eb04808",
        "shortName": "trellix"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://service.mcafee.com/?articleId=TS103243"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "title": "DLL Highjack vulnerability in McAfee TechCheck utility",
      "x_generator": {
        "engine": "Vulnogram 0.0.9"
      },
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@mcafee.com",
          "ID": "CVE-2022-0129",
          "STATE": "PUBLIC",
          "TITLE": "DLL Highjack vulnerability in McAfee TechCheck utility"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "McAfee TechCheck",
                      "version": {
                        "version_data": [
                          {
                            "version_affected": "\u003c",
                            "version_value": "4.0.0.2"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "McAfee,LLC"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Uncontrolled search path element vulnerability in McAfee TechCheck prior to 4.0.0.2 allows a local administrator to load their own Dynamic Link Library (DLL) gaining elevation of privileges to system user. This was achieved through placing the malicious DLL in the same directory that the process was run from."
            }
          ]
        },
        "generator": {
          "engine": "Vulnogram 0.0.9"
        },
        "impact": {
          "cvss": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.4,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "HIGH",
            "privilegesRequired": "HIGH",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:N/I:H/A:H",
            "version": "3.1"
          }
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-427: Uncontrolled Search Path Element"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://service.mcafee.com/?articleId=TS103243",
              "refsource": "CONFIRM",
              "url": "https://service.mcafee.com/?articleId=TS103243"
            }
          ]
        },
        "source": {
          "discovery": "UNKNOWN"
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "01626437-bf8f-4d1c-912a-893b5eb04808",
    "assignerShortName": "trellix",
    "cveId": "CVE-2022-0129",
    "datePublished": "2022-01-11T17:10:10.000Z",
    "dateReserved": "2022-01-05T00:00:00.000Z",
    "dateUpdated": "2024-08-02T23:18:41.751Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

GSD-2022-0129

Vulnerability from gsd - Updated: 2023-12-13 01:19

Details

Aliases

CVE-2022-0129

Aliases

CVE-2022-0129

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2022-0129",
    "description": "Uncontrolled search path element vulnerability in McAfee TechCheck prior to 4.0.0.2 allows a local administrator to load their own Dynamic Link Library (DLL) gaining elevation of privileges to system user. This was achieved through placing the malicious DLL in the same directory that the process was run from.",
    "id": "GSD-2022-0129"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2022-0129"
      ],
      "details": "Uncontrolled search path element vulnerability in McAfee TechCheck prior to 4.0.0.2 allows a local administrator to load their own Dynamic Link Library (DLL) gaining elevation of privileges to system user. This was achieved through placing the malicious DLL in the same directory that the process was run from.",
      "id": "GSD-2022-0129",
      "modified": "2023-12-13T01:19:11.321969Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "psirt@mcafee.com",
        "ID": "CVE-2022-0129",
        "STATE": "PUBLIC",
        "TITLE": "DLL Highjack vulnerability in McAfee TechCheck utility"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "McAfee TechCheck",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "\u003c",
                          "version_value": "4.0.0.2"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "McAfee,LLC"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Uncontrolled search path element vulnerability in McAfee TechCheck prior to 4.0.0.2 allows a local administrator to load their own Dynamic Link Library (DLL) gaining elevation of privileges to system user. This was achieved through placing the malicious DLL in the same directory that the process was run from."
          }
        ]
      },
      "generator": {
        "engine": "Vulnogram 0.0.9"
      },
      "impact": {
        "cvss": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 7.4,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "NONE",
          "integrityImpact": "HIGH",
          "privilegesRequired": "HIGH",
          "scope": "CHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:N/I:H/A:H",
          "version": "3.1"
        }
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "CWE-427: Uncontrolled Search Path Element\t"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://service.mcafee.com/?articleId=TS103243",
            "refsource": "CONFIRM",
            "url": "https://service.mcafee.com/?articleId=TS103243"
          }
        ]
      },
      "source": {
        "discovery": "UNKNOWN"
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:mcafee:techcheck:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndExcluding": "4.0.0.2",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@mcafee.com",
          "ID": "CVE-2022-0129"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Uncontrolled search path element vulnerability in McAfee TechCheck prior to 4.0.0.2 allows a local administrator to load their own Dynamic Link Library (DLL) gaining elevation of privileges to system user. This was achieved through placing the malicious DLL in the same directory that the process was run from."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-427"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://service.mcafee.com/?articleId=TS103243",
              "refsource": "CONFIRM",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "https://service.mcafee.com/?articleId=TS103243"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "acInsufInfo": false,
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 7.2,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          "exploitabilityScore": 3.9,
          "impactScore": 10.0,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": false
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 6.7,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "exploitabilityScore": 0.8,
          "impactScore": 5.9
        }
      },
      "lastModifiedDate": "2022-01-21T15:19Z",
      "publishedDate": "2022-01-11T17:15Z"
    }
  }
}

FKIE_CVE-2022-0129

Vulnerability from fkie_nvd - Published: 2022-01-11 17:15 - Updated: 2024-11-21 06:37

Severity ?

7.4 (High) - CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:N/I:H/A:H
6.7 (Medium) - CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Summary

References

	URL	Tags
	trellixpsirt@trellix.com	https://service.mcafee.com/?articleId=TS103243
	af854a3a-2127-422b-91ae-364da2661108	https://service.mcafee.com/?articleId=TS103243

Impacted products

	Vendor	Product	Version
	mcafee	techcheck	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:mcafee:techcheck:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "AFC580FB-32B9-4665-B1FB-F5F3E2A3F462",
              "versionEndExcluding": "4.0.0.2",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Uncontrolled search path element vulnerability in McAfee TechCheck prior to 4.0.0.2 allows a local administrator to load their own Dynamic Link Library (DLL) gaining elevation of privileges to system user. This was achieved through placing the malicious DLL in the same directory that the process was run from."
    },
    {
      "lang": "es",
      "value": "Una vulnerabilidad del elemento de ruta de b\u00fasqueda no controlada en McAfee TechCheck versiones anteriores a 4.0.0.2, permite que un administrador local cargue su propia biblioteca de enlaces din\u00e1micos (DLL) obteniendo una elevaci\u00f3n de privilegios a usuario del sistema. Esto es logrado mediante la colocaci\u00f3n de la DLL maliciosa en el mismo directorio desde el que era ejecutado el proceso"
    }
  ],
  "id": "CVE-2022-0129",
  "lastModified": "2024-11-21T06:37:57.800",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "LOCAL",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 7.2,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 10.0,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ],
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 7.4,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "NONE",
          "integrityImpact": "HIGH",
          "privilegesRequired": "HIGH",
          "scope": "CHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:N/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.1,
        "impactScore": 5.8,
        "source": "trellixpsirt@trellix.com",
        "type": "Secondary"
      },
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 6.7,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "HIGH",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 0.8,
        "impactScore": 5.9,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2022-01-11T17:15:08.197",
  "references": [
    {
      "source": "trellixpsirt@trellix.com",
      "url": "https://service.mcafee.com/?articleId=TS103243"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://service.mcafee.com/?articleId=TS103243"
    }
  ],
  "sourceIdentifier": "trellixpsirt@trellix.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-427"
        }
      ],
      "source": "trellixpsirt@trellix.com",
      "type": "Secondary"
    }
  ]
}

GHSA-W973-74M8-8XW5

Vulnerability from github – Published: 2022-01-12 00:01 – Updated: 2022-01-22 00:02

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2022-0129"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-427"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2022-01-11T17:15:00Z",
    "severity": "HIGH"
  },
  "details": "Uncontrolled search path element vulnerability in McAfee TechCheck prior to 4.0.0.2 allows a local administrator to load their own Dynamic Link Library (DLL) gaining elevation of privileges to system user. This was achieved through placing the malicious DLL in the same directory that the process was run from.",
  "id": "GHSA-w973-74m8-8xw5",
  "modified": "2022-01-22T00:02:25Z",
  "published": "2022-01-12T00:01:19Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-0129"
    },
    {
      "type": "WEB",
      "url": "https://service.mcafee.com/?articleId=TS103243"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

CNVD-2022-08918

Vulnerability from cnvd - Published: 2022-02-08

Title

McAfee TechCheck代码问题漏洞

Description

McAfee TechCheck是美国McAfee公司的一个保持计算机平稳运行的软件。用于诊断机器问题。 McAfee TechCheck 4.0.0.2 之前版本中存在代码问题漏洞，该漏洞允许本地管理员加载他们自己的动态链接库 (DLL)，从而获得系统用户的权限提升。这是通过将恶意 DLL 放置在运行该进程的同一目录中来实现的。目前没有详细的漏洞细节提供。

Severity

高

Patch Name

McAfee TechCheck代码问题漏洞的补丁

Patch Description

Formal description

目前厂商已发布升级补丁以修复漏洞，补丁获取链接： https://service.mcafee.com/?articleId=TS103243

Reference

https://nvd.nist.gov/vuln/detail/CVE-2022-0129

Impacted products

Name
Mcafee TechCheck <4.0.0.2

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2022-0129"
    }
  },
  "description": "McAfee TechCheck\u662f\u7f8e\u56fdMcAfee\u516c\u53f8\u7684\u4e00\u4e2a\u4fdd\u6301\u8ba1\u7b97\u673a\u5e73\u7a33\u8fd0\u884c\u7684\u8f6f\u4ef6\u3002\u7528\u4e8e\u8bca\u65ad\u673a\u5668\u95ee\u9898\u3002\n\nMcAfee TechCheck 4.0.0.2 \u4e4b\u524d\u7248\u672c\u4e2d\u5b58\u5728\u4ee3\u7801\u95ee\u9898\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u5141\u8bb8\u672c\u5730\u7ba1\u7406\u5458\u52a0\u8f7d\u4ed6\u4eec\u81ea\u5df1\u7684\u52a8\u6001\u94fe\u63a5\u5e93 (DLL)\uff0c\u4ece\u800c\u83b7\u5f97\u7cfb\u7edf\u7528\u6237\u7684\u6743\u9650\u63d0\u5347\u3002\u8fd9\u662f\u901a\u8fc7\u5c06\u6076\u610f DLL \u653e\u7f6e\u5728\u8fd0\u884c\u8be5\u8fdb\u7a0b\u7684\u540c\u4e00\u76ee\u5f55\u4e2d\u6765\u5b9e\u73b0\u7684\u3002\u76ee\u524d\u6ca1\u6709\u8be6\u7ec6\u7684\u6f0f\u6d1e\u7ec6\u8282\u63d0\u4f9b\u3002",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://service.mcafee.com/?articleId=TS103243",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2022-08918",
  "openTime": "2022-02-08",
  "patchDescription": "McAfee TechCheck\u662f\u7f8e\u56fdMcAfee\u516c\u53f8\u7684\u4e00\u4e2a\u4fdd\u6301\u8ba1\u7b97\u673a\u5e73\u7a33\u8fd0\u884c\u7684\u8f6f\u4ef6\u3002\u7528\u4e8e\u8bca\u65ad\u673a\u5668\u95ee\u9898\u3002\r\n\r\nMcAfee TechCheck 4.0.0.2 \u4e4b\u524d\u7248\u672c\u4e2d\u5b58\u5728\u4ee3\u7801\u95ee\u9898\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u5141\u8bb8\u672c\u5730\u7ba1\u7406\u5458\u52a0\u8f7d\u4ed6\u4eec\u81ea\u5df1\u7684\u52a8\u6001\u94fe\u63a5\u5e93 (DLL)\uff0c\u4ece\u800c\u83b7\u5f97\u7cfb\u7edf\u7528\u6237\u7684\u6743\u9650\u63d0\u5347\u3002\u8fd9\u662f\u901a\u8fc7\u5c06\u6076\u610f DLL \u653e\u7f6e\u5728\u8fd0\u884c\u8be5\u8fdb\u7a0b\u7684\u540c\u4e00\u76ee\u5f55\u4e2d\u6765\u5b9e\u73b0\u7684\u3002\u76ee\u524d\u6ca1\u6709\u8be6\u7ec6\u7684\u6f0f\u6d1e\u7ec6\u8282\u63d0\u4f9b\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "McAfee TechCheck\u4ee3\u7801\u95ee\u9898\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "Mcafee TechCheck \u003c4.0.0.2"
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2022-0129",
  "serverity": "\u9ad8",
  "submitTime": "2022-01-13",
  "title": "McAfee TechCheck\u4ee3\u7801\u95ee\u9898\u6f0f\u6d1e"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2022-0129 (GCVE-0-2022-0129)

GSD-2022-0129

FKIE_CVE-2022-0129

GHSA-W973-74M8-8XW5

CNVD-2022-08918

Tags

Sightings

Nomenclature