2 matches found
CVE-2015-3987
McAfee ePO Deep Command (Client Management and Gateway) 2.1/2.2 are affected by CVE-2015-3987 due to unquoted Windows search paths leading to local privilege elevation. The issue is rooted in unquoted path handling, enabling local users to gain privileges via unspecified vectors. A patched releas...
CVE-2015-8988
CVE-2015-8988 concerns an unquoted executable path vulnerability in the McAfee/ePO Deep Command (eDC) Client Management and Gateway components. The affected versions are eDC 2.2 and 2.1. The issue allows an authenticated user to execute arbitrary commands by dropping a malicious file in the unquo...