Описание
A write protection and execution bypass vulnerability in McAfee (now Intel Security) Application Control (MAC) 6.1.0 for Linux and earlier allows authenticated users to change binaries that are part of the Application Control whitelist and allows execution of binaries via specific conditions.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 6.1.0 (включая)Версия до 6.1.0 (включая)
Одно из
cpe:2.3:a:mcafee:application_control:*:*:*:*:*:linux:*:*
cpe:2.3:a:mcafee:change_control:*:*:*:*:*:linux:*:*
EPSS
Процентиль: 11%
0.00038
Низкий
5.5 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-284
Связанные уязвимости
CVSS3: 5.5
github
больше 3 лет назад
A write protection and execution bypass vulnerability in McAfee (now Intel Security) Application Control (MAC) 6.1.0 for Linux and earlier allows authenticated users to change binaries that are part of the Application Control whitelist and allows execution of binaries via specific conditions.
EPSS
Процентиль: 11%
0.00038
Низкий
5.5 Medium
CVSS3
2.1 Low
CVSS2
Дефекты
CWE-284