Unrated severityNVD Advisory· Published Jun 27, 2019· Updated Aug 4, 2024

Command Injection could allow authenticated users to execute arbitrary code

CVE-2019-3631

Description

Command Injection vulnerability in McAfee Enterprise Security Manager (ESM) prior to 11.2.0 and prior to 10.4.0 allows authenticated user to execute arbitrary code via specially crafted parameters.

Affected products

McAfee/Enterprise Security Managerllm-fuzzy
Range: <11.2.0, <10.4.0
McAfee, LLC/McAfee Enterprise Security Manager (ESM)v5
Range: 11.x

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

kc.mcafee.com/corporate/indexmitrex_refsource_CONFIRM

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.002
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000