CVE-2019-3588

Privilege Escalation vulnerability in Microsoft Windows client (McTray.exe) in McAfee VirusScan Enterprise (VSE) 8.8 prior to Patch 14 may allow unauthorized users to interact with the On-Access Scan Messages - Threat Alert Window when the Windows Login Screen is locked.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:mcafee:virusscan_enterprise:8.8:-:*:*:*:windows:*:*
cpe:2.3:a:mcafee:virusscan_enterprise:8.8:patch1:*:*:*:windows:*:*
cpe:2.3:a:mcafee:virusscan_enterprise:8.8:patch10:*:*:*:windows:*:*
cpe:2.3:a:mcafee:virusscan_enterprise:8.8:patch11:*:*:*:windows:*:*
cpe:2.3:a:mcafee:virusscan_enterprise:8.8:patch12:*:*:*:windows:*:*
cpe:2.3:a:mcafee:virusscan_enterprise:8.8:patch13:*:*:*:windows:*:*
cpe:2.3:a:mcafee:virusscan_enterprise:8.8:patch2:*:*:*:windows:*:*
cpe:2.3:a:mcafee:virusscan_enterprise:8.8:patch3:*:*:*:windows:*:*
cpe:2.3:a:mcafee:virusscan_enterprise:8.8:patch4:*:*:*:windows:*:*
cpe:2.3:a:mcafee:virusscan_enterprise:8.8:patch5:*:*:*:windows:*:*
cpe:2.3:a:mcafee:virusscan_enterprise:8.8:patch6:*:*:*:windows:*:*
cpe:2.3:a:mcafee:virusscan_enterprise:8.8:patch7:*:*:*:windows:*:*
cpe:2.3:a:mcafee:virusscan_enterprise:8.8:patch8:*:*:*:windows:*:*
cpe:2.3:a:mcafee:virusscan_enterprise:8.8:patch9:*:*:*:windows:*:*

History

21 Nov 2024, 04:42

Type Values Removed Values Added
CVSS v2 : 6.9
v3 : 6.8
v2 : 6.9
v3 : 6.3
References () https://kc.mcafee.com/corporate/index?page=content&id=SB10302 - () https://kc.mcafee.com/corporate/index?page=content&id=SB10302 -

07 Nov 2023, 03:09

Type Values Removed Values Added
References (CONFIRM) https://kc.mcafee.com/corporate/index?page=content&id=SB10302 - Vendor Advisory () https://kc.mcafee.com/corporate/index?page=content&id=SB10302 -

Information

Published : 2020-06-10 12:15

Updated : 2024-11-21 04:42


NVD link : CVE-2019-3588

Mitre link : CVE-2019-3588

CVE.ORG link : CVE-2019-3588


JSON object : View

Products Affected

mcafee

  • virusscan_enterprise
CWE
CWE-269

Improper Privilege Management