CVE-2019-3587

DLL Search Order Hijacking vulnerability in Microsoft Windows client in McAfee Total Protection (MTP) Prior to 16.0.18 allows local users to execute arbitrary code via execution from a compromised folder.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:mcafee:total_protection:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

History

21 Nov 2024, 04:42

Type Values Removed Values Added
References () http://service.mcafee.com/FAQDocument.aspx?&id=TS102887 - () http://service.mcafee.com/FAQDocument.aspx?&id=TS102887 -
CVSS v2 : 6.8
v3 : 6.5
v2 : 6.8
v3 : 7.2

07 Nov 2023, 03:09

Type Values Removed Values Added
References (MISC) http://service.mcafee.com/FAQDocument.aspx?&id=TS102887 - Vendor Advisory () http://service.mcafee.com/FAQDocument.aspx?&id=TS102887 -

Information

Published : 2019-01-23 15:29

Updated : 2024-11-21 04:42


NVD link : CVE-2019-3587

Mitre link : CVE-2019-3587

CVE.ORG link : CVE-2019-3587


JSON object : View

Products Affected

mcafee

  • total_protection

microsoft

  • windows
CWE
CWE-426

Untrusted Search Path