VYPR

True Key

by McAfee

CVEs (8)

  • CVE-2018-6700HigSep 24, 2018
    risk 0.51cvss 7.8epss 0.01

    DLL Search Order Hijacking vulnerability in Microsoft Windows Client in McAfee True Key (TK) before 5.1.165 allows local users to execute arbitrary code via specially crafted malware.

  • CVE-2018-6661HigApr 2, 2018
    risk 0.51cvss 7.8epss 0.01

    DLL Side-Loading vulnerability in Microsoft Windows Client in McAfee True Key before 4.20.110 allows local users to gain privilege elevation via not verifying a particular DLL file signature.

  • CVE-2018-6682MedSep 24, 2018
    risk 0.40cvss 6.1epss 0.01

    Cross Site Scripting Exposure in McAfee True Key (TK) 4.0.0.0 and earlier allows local users to expose confidential data via a crafted web site.

  • CVE-2018-6757Dec 6, 2018
    risk 0.03cvss epss 0.01

    Privilege Escalation vulnerability in Microsoft Windows client in McAfee True Key (TK) 5.1.230.7 and earlier allows local users to execute arbitrary code via specially crafted malware.

  • CVE-2018-6756Dec 6, 2018
    risk 0.03cvss epss 0.01

    Authentication Abuse vulnerability in Microsoft Windows client in McAfee True Key (TK) 5.1.230.7 and earlier allows local users to execute unauthorized commands via specially crafted malware.

  • CVE-2018-6755Dec 6, 2018
    risk 0.03cvss epss 0.01

    Weak Directory Permission Vulnerability in Microsoft Windows client in McAfee True Key (TK) 5.1.230.7 and earlier allows local users to execute arbitrary code via specially crafted malware.

  • CVE-2020-7299Sep 4, 2020
    risk 0.00cvss epss 0.00

    Cleartext Storage of Sensitive Information in Memory vulnerability in Microsoft Windows client in McAfee True Key (TK) prior to 6.2.109.2 allows a local user logged in with administrative privileges to access to another user’s passwords on the same machine via triggering a…

  • CVE-2019-3610Feb 13, 2019
    risk 0.00cvss epss 0.00

    Data Leakage Attacks vulnerability in Microsoft Windows client in McAfee True Key (TK) 3.1.9211.0 and earlier allows local users to expose confidential data via specially crafted malware.