PT-2019-16645 · Mcafee · Mcafee Endpoint Security

Published

2019-10-09

Updated

2020-10-16

CVE-2019-3653

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Name of the Vulnerable Software and Affected Versions McAfee Endpoint Security (ENS) versions prior to 10.6.1 October 2019 Update

Description The issue is related to an improper access control vulnerability in the Configuration tool of McAfee Endpoint Security (ENS). This vulnerability allows a local user to gain unauthorized access to security configurations via the configuration tool.

Recommendations For versions prior to 10.6.1 October 2019 Update, update to the October 2019 Update or a later version to resolve the issue.

Fix

Improper Access Control

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-284

Related Identifiers

CVE-2019-3653

Affected Products

Mcafee Endpoint Security

PT-2019-16645 · Mcafee · Mcafee Endpoint Security

CVE-2019-3653

Weakness Enumeration

Related Identifiers

Affected Products

References · 3