Executive Summary

Informations
NameCVE-2019-3586First vendor Publication2019-05-15
VendorCveLast vendor Modification2019-05-22

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:H/Au:N/C:P/I:P/A:P)
Cvss Base Score5.1Attack RangeNetwork
Cvss Impact Score6.4Attack ComplexityHigh
Cvss Expoit Score4.9AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

Protection Mechanism Failure in the Firewall in McAfee Endpoint Security (ENS) 10.x prior to 10.6.1 May 2019 update allows context-dependent attackers to circumvent ENS protection where GTI flagged IP addresses are not blocked by the ENS Firewall via specially crafted malicious sites where the GTI reputation is carefully manipulated and does not correctly trigger the ENS Firewall to block the connection.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3586

CWE : Common Weakness Enumeration

%idName
100 %CWE-254Security Features

CPE : Common Platform Enumeration

TypeDescriptionCount
Application2

Sources (Detail)

SourceUrl
BID http://www.securityfocus.com/bid/108416
CONFIRM https://kc.mcafee.com/corporate/index?page=content&id=SB10280

Alert History

If you want to see full details history, please login or register.
0
1
2
DateInformations
2019-05-22 17:19:14
  • Multiple Updates
2019-05-21 09:18:53
  • Multiple Updates
2019-05-15 21:19:36
  • First insertion