Arbitrary Code Execution Vulnerability in McAfee Enterprise Security Manager (ESM)

Arbitrary Code Execution Vulnerability in McAfee Enterprise Security Manager (ESM)

CVE-2019-3631 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Command Injection vulnerability in McAfee Enterprise Security Manager (ESM) prior to 11.2.0 and prior to 10.4.0 allows authenticated user to execute arbitrary code via specially crafted parameters.

Learn more about our User Device Pen Test.