← Zuruck zu CVEs

CVE-2019-3648

MEDIUM

6.1

Beschreibung

A Privilege Escalation vulnerability in the Microsoft Windows client in McAfee Total Protection 16.0.R22 and earlier allows administrators to execute arbitrary code via carefully placing malicious files in specific locations protected by administrator permission.

CVE Details

CVSS v3.1 Bewertung6.1

SchweregradMEDIUM

CVSS VektorCVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:H/A:L

AngriffsvektorLOCAL

KomplexitatHIGH

Erforderliche PrivilegienHIGH

BenutzerinteraktionNONE

Veroffentlicht11/13/2019

Zuletzt geandert11/21/2024

Quellenvd

Honeypot-Sichtungen0

Betroffene Produkte

mcafee:anti-virus_plusmcafee:internet_securitymcafee:total_protection

Schwachen (CWE)

CWE-426

Referenzen

https://safebreach.com/Post/McAfee-All-Editions-MTP-AVP-MIS-Self-Defense-Bypass-and-Potential-Usages-CVE-2019-3648(trellixpsirt@trellix.com)

https://service.mcafee.com/webcenter/portal/cp/home/articleview?articleId=TS102984(trellixpsirt@trellix.com)

https://safebreach.com/Post/McAfee-All-Editions-MTP-AVP-MIS-Self-Defense-Bypass-and-Potential-Usages-CVE-2019-3648(af854a3a-2127-422b-91ae-364da2661108)

https://service.mcafee.com/webcenter/portal/cp/home/articleview?articleId=TS102984(af854a3a-2127-422b-91ae-364da2661108)

IOC Korrelationen

Keine Korrelationen erfasst

This product uses data from the NVD API but is not endorsed or certified by the NVD.