CVE-2019-3629 Vulnerability Details
/
/
/
CVE-2019-3629 Metadata Quick Info
CVE Published: 27/06/2019 |
CVE Updated: 04/08/2024 |
CVE Year: 2019
Source: trellix |
Vendor: McAfee, LLC |
Product: McAfee Enterprise Security Manager (ESM)
Status : PUBLISHED
CVE-2019-3629 Description
Application protection bypass vulnerability in McAfee Enterprise Security Manager (ESM) prior to 11.2.0 and prior to 10.4.0 allows unauthenticated user to impersonate system users via specially crafted parameters.
Metrics
CVSS Version: 3.1 |
Base Score: n/a
Vector: n/a
l➤ Exploitability Metrics:
Attack Vector (AV)*
Attack Complexity (AC)*
Privileges Required (PR)*
User Interaction (UI)*
Scope (S)*
l➤ Impact Metrics:
Confidentiality Impact (C)*
Integrity Impact (I)*
Availability Impact (A)*
Weakness Enumeration (CWE)
CWE-ID:
CWE Name: Application protection bypass vulnerability
Source: McAfee, LLC
Common Attack Pattern Enumeration and Classification (CAPEC)
CAPEC-ID:
CAPEC Description: