A File Masquerade vulnerability in McAfee Total Protection (MTP) version 16.0.R21 and earlier in Windows client allowed an attacker to read the plaintext list of AV-Scan exclusion files from the Windows registry, and to possibly replace excluded files with potential malware without being detected.
References
Configurations
Configuration 1 (hide)
AND |
|
History
21 Nov 2024, 04:42
Type | Values Removed | Values Added |
---|---|---|
References | () https://service.mcafee.com/webcenter/portal/cp/home/articleview?articleId=TS102982 - | |
CVSS |
v2 : v3 : |
v2 : 4.6
v3 : 7.5 |
07 Nov 2023, 03:10
Type | Values Removed | Values Added |
---|---|---|
References | () https://service.mcafee.com/webcenter/portal/cp/home/articleview?articleId=TS102982 - |
Information
Published : 2019-10-28 15:15
Updated : 2024-11-21 04:42
NVD link : CVE-2019-3636
Mitre link : CVE-2019-3636
CVE.ORG link : CVE-2019-3636
JSON object : View
Products Affected
mcafee
- total_protection
microsoft
- windows
CWE
CWE-312
Cleartext Storage of Sensitive Information