CVE-2019-3629

Application protection bypass vulnerability in McAfee Enterprise Security Manager ESM prior to 11.2.0 and prior to 10.4.0 allows unauthenticated user to impersonate system users via specially crafted parameters...

Command injection

Command Injection vulnerability in McAfee Enterprise Security Manager ESM prior to 11.2.0 and prior to 10.4.0 allows authenticated user to execute arbitrary code via specially crafted parameters...

Security feature bypass

Application protection bypass vulnerability in McAfee Enterprise Security Manager ESM prior to 11.2.0 and prior to 10.4.0 allows unauthenticated user to impersonate system users via specially crafted parameters...

CVE-2019-3631

McAfee Enterprise Security Manager (ESM) is affected by a command injection vulnerability (CVE-2019-3631) in versions prior to 11.2.0 and prior to 10.4.0. The issue arises from input that can be crafted by anAuthenticated user to cause arbitrary code execution. Impact is described as remote code ...

CVE-2019-3630 Command Injection could allow authenticated users to execute arbitrary code

Command Injection vulnerability in McAfee Enterprise Security Manager ESM prior to 11.2.0 and prior to 10.4.0 allows authenticated user to execute arbitrary code via specially crafted parameters...

CVE-2019-3628 Privilege escalation could allow authenticated user to gain access to a core system

Privilege escalation in McAfee Enterprise Security Manager ESM 11.x prior to 11.2.0 allows authenticated user to gain access to a core system component via incorrect access control...

CVE-2019-3628

CVE-2019-3628 affects McAfee Enterprise Security Manager (ESM) 11.x before 11.2.0. An authenticated user can exploit incorrect access control to escalate privileges and access a core system component. Impact is described as privilege escalation with access to core components; remediation is to up...