CVE-2018-15452

CWE-4274 documents4 sources

Severity

6.7MEDIUM

EPSS

0.1%

top 79.65%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Cisco AMP FOR Endpoints

Timeline

PublishedNov 13

Latest updateMay 13

Description

A vulnerability in the DLL loading component of Cisco Advanced Malware Protection (AMP) for Endpoints on Windows could allow an authenticated, local attacker to disable system scanning services or take other actions to prevent detection of unauthorized intrusions. To exploit this vulnerability, the attacker would need to have administrative credentials on the Windows system. The vulnerability is due to the improper validation of resources loaded by a system process at run time. An attacker could…

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages1 packages

▶CVEListV5cisco/cisco_amp_for_endpointsn/a

🔴Vulnerability Details

GHSA

GHSA-j3cp-9wr8-vpp5: A vulnerability in the DLL loading component of Cisco Advanced Malware Protection (AMP) for Endpoints on Windows could allow an authenticated, local a↗2022-05-13

▶

CVEList

Cisco Advanced Malware Protection for Endpoints on Windows DLL Preloading Vulnerability↗2018-11-13

▶

📋Vendor Advisories

Cisco

Cisco Advanced Malware Protection for Endpoints on Windows DLL Preloading Vulnerability↗2018-10-29

▶