CVE-2019-3653
4.6
CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:H/I:L/A:N
Summary
Improper access control vulnerability in Configuration tool in McAfee Endpoint Security (ENS) Prior to 10.6.1 October 2019 Update allows local user to gain access to security configuration via unauthorized use of the configuration tool.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| McAfee, LLC | McAfee Endpoint Security (ENS) | 10.6.x < 10.6.1 | affected |
| McAfee, LLC | McAfee Endpoint Security (ENS) | 10.5.x < 10.5.5 | affected |
Weaknesses
- CWE-284: CWE-284 Improper Access Control
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.