8.3
CVE-2019-3629
- EPSS 1.38%
- Veröffentlicht 27.06.2019 21:15:10
- Zuletzt bearbeitet 21.11.2024 04:42:15
- Quelle trellixpsirt@trellix.com
- CVE-Watchlists
- Unerledigt
LoginApplication protection bypass vulnerability in McAfee Enterprise Security Manager (ESM) prior to 11.2.0 and prior to 10.4.0 allows unauthenticated user to impersonate system users via specially crafted parameters.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Mcafee ≫ Enterprise Security Manager Version < 10.4.0
Mcafee ≫ Enterprise Security Manager Version >= 11.0.0 < 11.2.0
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.38% | 0.785 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 6.5 | 2.8 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
|
| nvd@nist.gov | 4.3 | 8.6 | 2.9 |
AV:N/AC:M/Au:N/C:N/I:P/A:N
|
| trellixpsirt@trellix.com | 8.3 | 1.6 | 6 |
CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H
|