6.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
0.0004 Low
EPSS
Percentile
5.1%
Privilege escalation vulnerability in DXL Broker for Windows prior to 6.0.0.280 allows local users to gain elevated privileges by exploiting weak directory controls in the logs directory. This can lead to a denial-of-service attack on the DXL Broker.
CPE | Name | Operator | Version |
---|---|---|---|
mcafee:data_exchange_layer | mcafee data exchange layer | lt | 6.0.0.280 |
[
{
"defaultStatus": "unaffected",
"platforms": [
"Windows"
],
"product": "DXL Broker",
"vendor": "Trellix",
"versions": [
{
"lessThan": "6.0.0.280",
"status": "affected",
"version": "5.x",
"versionType": "custom"
}
]
}
]
More