CVE-2015-8993

HIGH

Intel Security CloudAV (Beta) < 0.5.0.151.3 - Malicious File Execution during Installation or Uninstallation

Title source: llm
STIX 2.1

Description

Malicious file execution vulnerability in Intel Security CloudAV (Beta) before 0.5.0.151.3 allows attackers to make the product momentarily vulnerable via executing preexisting specifically crafted malware during installation or uninstallation, but not during normal operation.

References (1)

Core 1

Scores

CVSS v3 7.0
EPSS 0.0005
EPSS Percentile 15.5%
Attack Vector LOCAL
CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-264
Status published
Products (6)
Intel/CloudAV (Beta) before 0.5.0.151.3
mcafee/cloud_av
mcafee/security_scan_plus
mcafee/security_webadvisor 3.7.2
mcafee/security_webadvisor 4.0.1
mcafee/security_webadvisor 4.0.2
Published Mar 14, 2017
Tracked Since Feb 18, 2026