Description
Privilege escalation vulnerability in DXL Broker for Windows prior to 6.0.0.280 allows local users to gain elevated privileges by exploiting weak directory controls in the logs directory. This can lead to a denial-of-service attack on the DXL Broker.
CVSS Metrics
- Vector
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
- Attack Vector
- local
- Complexity
- low
- Privileges
- low
- User Action
- none
- Scope
- changed
- Confidentiality
- none
- Integrity
- none
- Availability
- high
- Weaknesses
- CWE-732
Metadata
- Primary Vendor
- MCAFEE
- Published
- 11/7/2022
- Last Modified
- 11/21/2024
- Source
- NIST NVD
- Note: Verify all details with official vendor sources before applying patches.
Affected Products
mcafee : data_exchange_layer
AI-Powered Remediation
Generate remediation guidance or a C-suite brief for this vulnerability.