2019-01-03 08:04:21 -05:00
{
2019-03-18 02:12:31 +00:00
"CVE_data_meta" : {
"ASSIGNER" : "psirt@mcafee.com" ,
"ID" : "CVE-2019-3599" ,
"STATE" : "PUBLIC" ,
"TITLE" : "McAfee Agent update fixes an Information Disclosure vulnerability"
} ,
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "McAfee Agent (MA)" ,
"version" : {
"version_data" : [
{
"affected" : "<" ,
"version_name" : "5.x" ,
"version_value" : "5.6.0 HF1"
}
]
}
}
]
} ,
"vendor_name" : "McAfee, LLC"
}
]
}
} ,
"data_format" : "MITRE" ,
"data_type" : "CVE" ,
"data_version" : "4.0" ,
"description" : {
"description_data" : [
2019-02-26 15:18:47 +00:00
{
2019-03-18 02:12:31 +00:00
"lang" : "eng" ,
"value" : "Information Disclosure vulnerability in Remote logging (which is disabled by default) in McAfee Agent (MA) 5.x allows remote unauthenticated users to access sensitive information via remote logging when it is enabled."
2019-02-26 15:18:47 +00:00
}
2019-03-18 02:12:31 +00:00
]
} ,
"impact" : {
"cvss" : {
"attackComplexity" : "LOW" ,
"attackVector" : "NETWORK" ,
"availabilityImpact" : "NONE" ,
"baseScore" : 6.5 ,
"baseSeverity" : "MEDIUM" ,
"confidentialityImpact" : "HIGH" ,
"integrityImpact" : "NONE" ,
"privilegesRequired" : "NONE" ,
"scope" : "UNCHANGED" ,
"userInteraction" : "REQUIRED" ,
"vectorString" : "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N" ,
"version" : "3.0"
}
} ,
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng" ,
"value" : "Information Disclosure vulnerability"
}
]
}
]
} ,
"references" : {
"reference_data" : [
{
"name" : "https://kc.mcafee.com/corporate/index?page=content&id=SB10271" ,
"refsource" : "CONFIRM" ,
"url" : "https://kc.mcafee.com/corporate/index?page=content&id=SB10271"
}
]
} ,
"source" : {
"discovery" : "UNKNOWN"
}
}
