CVE-2019-1932 MEDIUM

CVE-2019-1932: Cisco Advanced Malware Protection for Endpoints Windows Command Injection Vulnerability

Vendor Cisco
Product Cisco AMP for Endpoints
Weakness CWE-345
Published July 6, 2019
Last update November 20, 2024

CVSS base score

6.7/10
Attack vector Local
Attack complexity Low
Privileges required High
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

A vulnerability in Cisco Advanced Malware Protection (AMP) for Endpoints for Windows could allow an authenticated, local attacker with administrator privileges to execute arbitrary code. The vulnerability is due to insufficient validation of dynamically loaded modules. An attacker could exploit this vulnerability by placing a file in a specific location in the Windows filesystem. A successful exploit could allow the attacker to execute the code with the privileges of the AMP service.

Key dates

02Disclosure timeline

July 6, 2019 CVE published
November 20, 2024 Record updated