Privilege Escalation Vulnerability in McAfee VirusScan Enterprise (VSE) 8.8 prior to Patch 14

Privilege Escalation Vulnerability in McAfee VirusScan Enterprise (VSE) 8.8 prior to Patch 14

CVE-2019-3585 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Privilege Escalation vulnerability in Microsoft Windows client (McTray.exe) in McAfee VirusScan Enterprise (VSE) 8.8 prior to Patch 14 may allow local users to interact with the On-Access Scan Messages - Threat Alert Window with elevated privileges via running McAfee Tray with elevated privileges.

Learn more about our User Device Pen Test.