Описание
Malicious file execution vulnerability in Intel Security McAfee Security Scan+ (MSS+) before 3.11.266.3 allows attackers to make the product momentarily vulnerable via executing preexisting specifically crafted malware during installation or uninstallation, but not during normal operation.
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:mcafee:security_webadvisor:3.7.2:*:*:*:*:*:*:*
cpe:2.3:a:mcafee:security_webadvisor:4.0.1:*:*:*:*:*:*:*
cpe:2.3:a:mcafee:security_webadvisor:4.0.2:*:*:*:*:*:*:*
Конфигурация 2
Одно из
cpe:2.3:a:mcafee:cloud_av:-:*:*:*:*:*:*:*
cpe:2.3:a:mcafee:security_scan_plus:-:*:*:*:*:*:*:*
EPSS
Процентиль: 16%
0.00049
Низкий
7 High
CVSS3
6.9 Medium
CVSS2
Дефекты
CWE-264
Связанные уязвимости
CVSS3: 7
github
больше 3 лет назад
Malicious file execution vulnerability in Intel Security McAfee Security Scan+ (MSS+) before 3.11.266.3 allows attackers to make the product momentarily vulnerable via executing preexisting specifically crafted malware during installation or uninstallation, but not during normal operation.
EPSS
Процентиль: 16%
0.00049
Низкий
7 High
CVSS3
6.9 Medium
CVSS2
Дефекты
CWE-264