CVE-2019-3630

Summary

Command Injection vulnerability in McAfee Enterprise Security Manager (ESM) prior to 11.2.0 and prior to 10.4.0 allows authenticated user to execute arbitrary code via specially crafted parameters.

Affected Software

VendorProductVersion RangeStatus
McAfee, LLCMcAfee Enterprise Security Manager (ESM)11.x < 11.2.0affected
McAfee, LLCMcAfee Enterprise Security Manager (ESM)10.x < 10.4.0affected

Weaknesses

  • Command Injection vulnerability

ADP Enrichment

CVE Program Container

Additional References

References