CVE-2019-1932

CWE-3454 documents4 sources

Severity

6.7MEDIUM

EPSS

0.0%

top 92.82%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Cisco AMP FOR Endpoints Cisco Advanced Malware Protection FOR Endpoints

Timeline

PublishedJul 6

Latest updateMay 24

Description

A vulnerability in Cisco Advanced Malware Protection (AMP) for Endpoints for Windows could allow an authenticated, local attacker with administrator privileges to execute arbitrary code. The vulnerability is due to insufficient validation of dynamically loaded modules. An attacker could exploit this vulnerability by placing a file in a specific location in the Windows filesystem. A successful exploit could allow the attacker to execute the code with the privileges of the AMP service.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:HExploitability: 0.8 | Impact: 5.9

Affected Packages2 packages

▶NVDcisco/advanced_malware_protection6.2\(3\)

▶CVEListV5cisco/cisco_amp_for_endpointsunspecified — 6.3.3

🔴Vulnerability Details

GHSA

GHSA-cwr2-8r52-4r98: A vulnerability in Cisco Advanced Malware Protection (AMP) for Endpoints for Windows could allow an authenticated, local attacker with administrator p↗2022-05-24

▶

CVEList

Cisco Advanced Malware Protection for Endpoints Windows Command Injection Vulnerability↗2019-07-06

▶

📋Vendor Advisories

Cisco

Cisco Advanced Malware Protection for Endpoints Windows Command Injection Vulnerability↗2019-07-03

▶