Описание
Malicious file execution vulnerability in Intel Security WebAdvisor before 4.0.2, 4.0.1 and 3.7.2 allows attackers to make the product momentarily vulnerable via executing preexisting specifically crafted malware during installation or uninstallation, but not during normal operation.
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:mcafee:security_webadvisor:3.7.2:*:*:*:*:*:*:*
cpe:2.3:a:mcafee:security_webadvisor:4.0.1:*:*:*:*:*:*:*
cpe:2.3:a:mcafee:security_webadvisor:4.0.2:*:*:*:*:*:*:*
Конфигурация 2
Одно из
cpe:2.3:a:mcafee:cloud_av:-:*:*:*:*:*:*:*
cpe:2.3:a:mcafee:security_scan_plus:-:*:*:*:*:*:*:*
EPSS
Процентиль: 15%
0.00049
Низкий
7 High
CVSS3
6.9 Medium
CVSS2
Дефекты
CWE-264
Связанные уязвимости
CVSS3: 7
github
больше 3 лет назад
Malicious file execution vulnerability in Intel Security WebAdvisor before 4.0.2, 4.0.1 and 3.7.2 allows attackers to make the product momentarily vulnerable via executing preexisting specifically crafted malware during installation or uninstallation, but not during normal operation.
EPSS
Процентиль: 15%
0.00049
Низкий
7 High
CVSS3
6.9 Medium
CVSS2
Дефекты
CWE-264