CVE-2019-3582Improper Privilege Management in LLC Mcafee Endpoint Security

3 documents3 sources
Severity
7.8HIGHNVD
CNA8.6
EPSS
0.1%
top 84.48%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Mcafee LLC Mcafee Endpoint SecurityMcafee Endpoint Security
Timeline
PublishedFeb 28
Latest updateMay 13

Description

Privilege Escalation vulnerability in Microsoft Windows client in McAfee Endpoint Security (ENS) 10.6.1 and earlier allows local users to gain elevated privileges via a specific set of circumstances.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages2 packages

CVEListV5mcafee_llc/mcafee_endpoint_security10.5.310.5.3 Hotfix 1240838+3

🔴Vulnerability Details

2
GHSA
GHSA-9vm4-rfx8-h4hf: Privilege Escalation vulnerability in Microsoft Windows client in McAfee Endpoint Security (ENS) 102022-05-13
CVEList
McAfee Endpoint Security updates fix a privilege escalation vulnerability2019-02-28
CVE-2019-3582 — Improper Privilege Management | cvebase