CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2023-6119
https://notcve.org/view.php?id=CVE-2023-6119
16 Nov 2023 — An Improper Privilege Management vulnerability in Trellix GetSusp prior to version 5.0.0.27 allows a local, low privilege attacker to gain access to files that usually require a higher privilege level. This is caused by GetSusp not correctly protecting a directory that it creates during execution, allowing an attacker to take over file handles used by GetSusp. As this runs with high privileges, the attacker gains elevated permissions. The file handles are opened as read-only. Una vulnerabilidad de Gestión d... • https://kcm.trellix.com/corporate/index?page=content&id=SB10412 • CWE-269: Improper Privilege Management •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2021-31837 – Out of bounds write vulnerability in McAfee GetSusp
https://notcve.org/view.php?id=CVE-2021-31837
09 Jun 2021 — Memory corruption vulnerability in the driver file component in McAfee GetSusp prior to 4.0.0 could allow a program being investigated on the local machine to trigger a buffer overflow in GetSusp, leading to the execution of arbitrary code, potentially triggering a BSOD. Una vulnerabilidad de corrupción de la memoria en el componente del archivo del controlador en McAfee GetSusp versiones anteriores a 4.0.0, podría permitir a un programa que está siendo investigado en la máquina local desencadenar un desbor... • https://kc.mcafee.com/corporate/index?page=content&id=SB10363 • CWE-787: Out-of-bounds Write •
CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 0CVE-2018-6687 – GetSusp (a free McAfee tool) update fixes an infinite loop vulnerability (CVE-2018-6687)
https://notcve.org/view.php?id=CVE-2018-6687
21 Feb 2019 — Loop with Unreachable Exit Condition ('Infinite Loop') in McAfee GetSusp (GetSusp) 3.0.0.461 and earlier allows attackers to DoS a manual GetSusp scan via while scanning a specifically crafted file . GetSusp is a free standalone McAfee tool that runs on several versions of Microsoft Windows. Un bucle con una condición de salida no alcanzable ('Infinite Loop' [bucle infinito]) en McAfee GetSusp (GetSusp), en sus versiones 3.0.0.461 y anteriores, permite a los atacantes realizar una denegación de servicio (Do... • http://www.securityfocus.com/bid/107126 • CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') •