CVE-2017-4028

Опубликовано: 03 апр. 2018

Источник: nvd

CVSS3: 5

CVSS3: 4.4

CVSS2: 2.1

EPSS Низкий

Описание

Maliciously misconfigured registry vulnerability in all Microsoft Windows products in McAfee consumer and corporate products allows an administrator to inject arbitrary code into a debugged McAfee process via manipulation of registry parameters.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одновременно

Одно из

cpe:2.3:a:mcafee:anti-virus_plus:-:*:*:*:*:*:*:*

cpe:2.3:a:mcafee:endpoint_security:10.2:*:*:*:*:*:*:*

cpe:2.3:a:mcafee:host_intrusion_prevention:*:*:*:*:*:*:*:*

Версия до 8.0 (включая)

cpe:2.3:a:mcafee:host_intrusion_prevention:8.0:patch_1:*:*:*:*:*:*

cpe:2.3:a:mcafee:host_intrusion_prevention:8.0:patch_2:*:*:*:*:*:*

cpe:2.3:a:mcafee:host_intrusion_prevention:8.0:patch_3:*:*:*:*:*:*

cpe:2.3:a:mcafee:host_intrusion_prevention:8.0:patch_4:*:*:*:*:*:*

cpe:2.3:a:mcafee:host_intrusion_prevention:8.0:patch_5:*:*:*:*:*:*

cpe:2.3:a:mcafee:host_intrusion_prevention:8.0:patch_6:*:*:*:*:*:*

cpe:2.3:a:mcafee:host_intrusion_prevention:8.0:patch_7:*:*:*:*:*:*

cpe:2.3:a:mcafee:host_intrusion_prevention:8.0:patch_8:*:*:*:*:*:*

cpe:2.3:a:mcafee:host_intrusion_prevention:8.0:patch_9:*:*:*:*:*:*

cpe:2.3:a:mcafee:internet_security:-:*:*:*:*:*:*:*

cpe:2.3:a:mcafee:total_protection:-:*:*:*:*:*:*:*

cpe:2.3:a:mcafee:virus_scan_enterprise:*:*:*:*:*:*:*:*

Версия до 8.8 (включая)

cpe:2.3:a:mcafee:virus_scan_enterprise:8.8:patch_9:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

EPSS

Процентиль: 17%

0.00054

Низкий

5 Medium

CVSS3

4.4 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-74

Связанные уязвимости

GHSA-4v65-vf6x-vh24

CVSS3: 4.4

github

больше 3 лет назад

EPSS

Процентиль: 17%

0.00054

Низкий

5 Medium

CVSS3

4.4 Medium

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-74