CVE-2019-3628
HIGHMcAfee Enterprise Security Manager 11.0.0-11.1.x - Authenticated Privilege Escalation via Incorrect Access Control
Title source: llmDescription
Privilege escalation in McAfee Enterprise Security Manager (ESM) 11.x prior to 11.2.0 allows authenticated user to gain access to a core system component via incorrect access control.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
https://kc.mcafee.com/corporate/index?page=content&id=SB10284
Scores
CVSS v3
8.8
EPSS
0.0079
EPSS Percentile
74.1%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
Status
published
Products (1)
mcafee/enterprise_security_manager
11.0.0 - 11.2.0
Published
Jun 27, 2019
Tracked Since
Feb 18, 2026