Описание
Unquoted service executable path in DXL Broker in McAfee Data eXchange Layer (DXL) Framework 6.0.0 and earlier allows local users to cause a denial of service and malicious file execution via carefully crafted and named executable files.
Уязвимые конфигурации
Конфигурация 1Версия до 6.0.0 (включая)
Одновременно
cpe:2.3:a:mcafee:data_exchange_layer:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
EPSS
Процентиль: 9%
0.00034
Низкий
4.2 Medium
CVSS3
5.5 Medium
CVSS3
1.9 Low
CVSS2
Дефекты
CWE-250
CWE-428
Связанные уязвимости
github
больше 3 лет назад
Unquoted service executable path in DXL Broker in McAfee Data eXchange Layer (DXL) Framework 6.0.0 and earlier allows local users to cause a denial of service and malicious file execution via carefully crafted and named executable files.
EPSS
Процентиль: 9%
0.00034
Низкий
4.2 Medium
CVSS3
5.5 Medium
CVSS3
1.9 Low
CVSS2
Дефекты
CWE-250
CWE-428