CVE-2019-1932
Description
A vulnerability in Cisco Advanced Malware Protection (AMP) for Endpoints for Windows could allow an authenticated, local attacker with administrator privileges to execute arbitrary code. The vulnerability is due to insufficient validation of dynamically loaded modules. An attacker could exploit this vulnerability by placing a file in a specific location in the Windows filesystem. A successful exploit could allow the attacker to execute the code with the privileges of the AMP service.
Risk Information
Base Score
6.7
MODERATE
Vector
CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.026
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Cisco Advanced Malware Protection for Endpoints Windows Command Injection Vulnerability For Cisco Secure Endpoint | NCM |
| Insufficient Verification of Data Authenticity Vulnerability (CVE-2019-1932) | NCM |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-1706018 | Security Update for Cisco Secure Endpoint 5.0(1) |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234