CVE-2018-6693— Endpoint Security for Linux Threat Prevention (ENSLTP) privilege escalation vulnerability
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2018-6693
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Endpoint Security for Linux Threat Prevention (ENSLTP) privilege escalation vulnerability
Source: NVD (National Vulnerability Database)
Vulnerability Description
An unprivileged user can delete arbitrary files on a Linux system running ENSLTP 10.5.1, 10.5.0, and 10.2.3 Hotfix 1246778 and earlier. By exploiting a time of check to time of use (TOCTOU) race condition during a specific scanning sequence, the unprivileged user is able to perform a privilege escalation to delete arbitrary files.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
允许符号链接跟随的竞争条件
Source: NVD (National Vulnerability Database)
Vulnerability Title
McAfee ENSLTP 权限许可和访问控制问题漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
McAfee ENSLTP是美国迈克菲(McAfee)公司的一款基于Linux平台的终端安全防护终端。 McAfee ENSLTP 10.5.1版本、10.5.0版本和10.2.3 Hotfix 1246778及之前版本中存在提权漏洞。攻击者可利用该漏洞提升权限,进而删除任意文件。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| McAfee | Endpoint Security for Linux Threat Prevention (ENSLTP) | 10.5.0 | - |
II. Public POCs for CVE-2018-6693
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2018-6693
请登录查看更多情报信息。
- https://kc.mcafee.com/corporate/index?page=content&id=SB10248x_refsource_CONFIRM
- https://nvd.nist.gov/vuln/detail/CVE-2018-6693
Same Patch Batch · McAfee · 2018-09-18 · 3 CVEs total
| CVE-2017-3912 | McAfee Application Control and Change Control (MACC) - password management security featur | |
| CVE-2018-6690 | McAfee Application Control (MAC) - Whitelist bypass using a hard drive solidified by MACC |
IV. Related Vulnerabilities
Same vendor: McAfee
- CVE-2022-0280
McAfee Total Protection (MTP) - File Deletion vulnerability - CVE-2022-0815
McAfee WebAdvisor - Extension Fingerprinting vulnerability - CVE-2021-31848
Data Loss Prevention (DLP) ePO extension - Cross site script - CVE-2021-31849
Data Loss Prevention (DLP) ePO extension - SQL injection - CVE-2021-23877
McAfee Total Protection (MTP) - Privilege Escalation vulnera
Same weakness: CWE-363
V. Comments for CVE-2018-6693
No comments yet