CVE-2019-3598

low-risk

Published 2019-02-28

Buffer Access with Incorrect Length Value in McAfee Agent (MA) 5.x allows remote unauthenticated users to potentially cause a denial of service via specifically crafted UDP packets.

Do I need to act?

0.37% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 5.3/10 Medium

NETWORK / LOW complexity

Affected Products (2)

Agent

Affected Vendors

Mcafee

References (4)

http://www.securityfocus.com/bid/107205

https://kc.mcafee.com/corporate/index?page=content&id=SB10272

http://www.securityfocus.com/bid/107205

https://kc.mcafee.com/corporate/index?page=content&id=SB10272

/ 100

low-risk

Severity 21/34 · High

Exploitability 1/34 · Minimal

Exposure 7/34 · Low