CVE-2019-3629 Vulnerability Details

  /     /     /  

CVE-2019-3629 Metadata Quick Info

CVE Published: 27/06/2019 | CVE Updated: 04/08/2024 | CVE Year: 2019
Source: trellix | Vendor: McAfee, LLC | Product: McAfee Enterprise Security Manager (ESM)
Status : PUBLISHED

CVE-2019-3629 Description

Application protection bypass vulnerability in McAfee Enterprise Security Manager (ESM) prior to 11.2.0 and prior to 10.4.0 allows unauthenticated user to impersonate system users via specially crafted parameters.

Metrics

CVSS Version: 3.1 | Base Score: n/a
Vector: n/a

l➤ Exploitability Metrics:
    Attack Vector (AV)*
    Attack Complexity (AC)*
    Privileges Required (PR)*
    User Interaction (UI)*
    Scope (S)*

l➤ Impact Metrics:
    Confidentiality Impact (C)*
    Integrity Impact (I)*
    Availability Impact (A)*

Weakness Enumeration (CWE)

CWE-ID:
CWE Name: Application protection bypass vulnerability
Source: McAfee, LLC

Common Attack Pattern Enumeration and Classification (CAPEC)

CAPEC-ID:
CAPEC Description: