CVE-2018-6693

low-risk
Published 2018-09-18

An unprivileged user can delete arbitrary files on a Linux system running ENSLTP 10.5.1, 10.5.0, and 10.2.3 Hotfix 1246778 and earlier. By exploiting a time of check to time of use (TOCTOU) race condition during a specific scanning sequence, the unprivileged user is able to perform a privilege escalation to delete arbitrary files.

Do I need to act?

-
0.03% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
5
CVSS 5.3/10 Medium
LOCAL / HIGH complexity

Affected Products (3)

Endpoint Security For Linux Threat Prevention
Endpoint Security For Linux Threat Prevention
Endpoint Security Linux Threat Prevention

Affected Vendors

Mcafee

References (2)

https://kc.mcafee.com/corporate/index?page=content&id=SB10248
https://kc.mcafee.com/corporate/index?page=content&id=SB10248
23
/ 100
low-risk
Severity 14/34 · Moderate
Exploitability 0/34 · Minimal
Exposure 9/34 · Low