CVE-2019-3631
8
CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
Summary
Command Injection vulnerability in McAfee Enterprise Security Manager (ESM) prior to 11.2.0 and prior to 10.4.0 allows authenticated user to execute arbitrary code via specially crafted parameters.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| McAfee, LLC | McAfee Enterprise Security Manager (ESM) | 11.x < 11.2.0 | affected |
| McAfee, LLC | McAfee Enterprise Security Manager (ESM) | 10.x < 10.4.0 | affected |
Weaknesses
- Command Injection vulnerability
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.