5.1
CVE-2016-3984
- EPSS 0.29%
- Published 08.04.2016 15:59:10
- Last modified 12.04.2025 10:46:40
- Source cve@mitre.org
- Teams watchlist Login
- Open Login
The McAfee VirusScan Console (mcconsol.exe) in McAfee Active Response (MAR) before 1.1.0.161, Agent (MA) 5.x before 5.0.2 Hotfix 1110392 (5.0.2.333), Data Exchange Layer 2.x (DXL) before 2.0.1.140.1, Data Loss Prevention Endpoint (DLPe) 9.3 before Patch 6 and 9.4 before Patch 1 HF3, Device Control (MDC) 9.3 before Patch 6 and 9.4 before Patch 1 HF3, Endpoint Security (ENS) 10.x before 10.1, Host Intrusion Prevention Service (IPS) 8.0 before 8.0.0.3624, and VirusScan Enterprise (VSE) 8.8 before P7 (8.8.0.1528) on Windows allows local administrators to bypass intended self-protection rules and disable the antivirus engine by modifying registry keys.
Data is provided by the National Vulnerability Database (NVD)
Mcafee ≫ Active Response Version <= 1.1.0.158
Mcafee ≫ Data Exchange Layer Version <= 2.0.0.430.1
Mcafee ≫ Data Loss Prevention Endpoint Updatep5 Version <= 9.3.0
Mcafee ≫ Data Loss Prevention Endpoint Updatep1_hf2 Version <= 9.4.0
Mcafee ≫ Endpoint Security Version <= 10.0.1
Mcafee ≫ Host Intrusion Prevention Updatep6 Version <= 8.0.0
Mcafee ≫ Virusscan Enterprise Updatep6 Version <= 8.8.0
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.29% | 0.52 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 5.1 | 0.8 | 4.2 |
CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H
|
| nvd@nist.gov | 3.6 | 3.9 | 4.9 |
AV:L/AC:L/Au:N/C:N/I:P/A:P
|
CWE-284 Improper Access Control
The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.