CVE-2016-8016

EPSS 9.83%
Veröffentlicht 14.03.2017 22:59:00
Zuletzt bearbeitet 20.04.2025 01:37:25
Quelle secure@intel.com
Teams Watchlist Login
Unerledigt Login

Information exposure in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier) allows authenticated remote attackers to obtain the existence of unauthorized files on the system via a URL parameter.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 7

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Mcafee ≫ Virusscan Enterprise SwPlatformlinux Version <= 2.0.3

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	9.83%	0.923

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	3.4	1.7	1.4	CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:N/A:N
nvd@nist.gov	3.5	6.8	2.9	AV:N/AC:M/Au:S/C:P/I:N/A:N

CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

http://www.securityfocus.com/bid/94823

http://www.securitytracker.com/id/1037433

https://kc.mcafee.com/corporate/index?page=content&id=SB10181

Vendor Advisory

https://www.exploit-db.com/exploits/40911/

https://nvd.nist.gov/vuln/detail/CVE-2016-8016

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2016-8016

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2016-8016

EUVD