7.2

CVE-2015-3987

Multiple unquoted Windows search path vulnerabilities in the (1) Client Management and (2) Gateway in McAfee ePO Deep Command 2.1 and 2.2 before HF 1058831 allow local users to gain privileges via unspecified vectors.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
McafeeEpo Deep Command Version2.1
McafeeEpo Deep Command Version2.2
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.47% 0.371
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.2 3.9 10
AV:L/AC:L/Au:N/C:C/I:C/A:C
CWE-426 Untrusted Search Path

The product searches for critical resources using an externally-supplied search path that can point to resources that are not under the product's direct control.

http://www.securityfocus.com/bid/74685
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1032244
Third Party Advisory
VDB Entry
https://kc.mcafee.com/corporate/index?page=content&id=SB10115
Vendor Advisory