Directory Traversal vulnerability could lead to elevated privileges
CVE-2019-3632
8.5HIGH
What is CVE-2019-3632?
Directory Traversal vulnerability in McAfee Enterprise Security Manager (ESM) prior to 11.2.0 and prior to 10.4.0 allows authenticated user to gain elevated privileges via specially crafted input.
Affected Version(s)
McAfee Enterprise Security Manager (ESM) 11.x < 11.2.0
McAfee Enterprise Security Manager (ESM) 10.x < 10.4.0
References
CVSS V3.1
Score:
8.5
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
High
Privileges Required:
Low
User Interaction:
None
Scope:
Changed
Timeline
Vulnerability published
Vulnerability Reserved