CVE-2019-3648
Summary
| CVE | CVE-2019-3648 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2019-11-13 09:15:00 UTC |
| Updated | 2023-11-07 03:10:00 UTC |
| Description | A Privilege Escalation vulnerability in the Microsoft Windows client in McAfee Total Protection 16.0.R22 and earlier allows administrators to execute arbitrary code via carefully placing malicious files in specific locations protected by administrator permission. |
Risk And Classification
Problem Types: CWE-426
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Mcafee | Anti-virus Plus | All | All | All | All |
| Application | Mcafee | Internet Security | All | All | All | All |
| Application | Mcafee | Total Protection | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| service.mcafee.com/webcenter/portal/cp/home/articleview | CONFIRM | service.mcafee.com | Vendor Advisory |
| McAfee - All Editions (MTP, AVP, MIS) - Self-Defense Bypass and Potential Usages (CVE-2019-3648) | MISC | safebreach.com | Exploit, Third Party Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.