McAfee Agent and other McAfee products contain executable code signed by McAfee. These executables validate that the McAfee Agent files are created and provided by McAfee.
Key information:
- The private key used to sign McAfee code is set to expire after three years. This rate is an industry standard.
- The current signing certificate is set to expire on July 7, 2022.
- If a new executable code is signed after the expiration date of the signing certificate, it results in an untrusted file.
- Files that are signed with an expired certificate remain trusted. The files continue to function and have no effect on usability.
McAfee endpoints installed with builds of the McAfee Agent that contain executables signed with a certificate which is near or past expiration, require no action. They are not vulnerable, and continue to function as normal.
