A vulnerability in the system scanning component of Cisco Immunet and Cisco Advanced Malware Protection (AMP) for Endpoints running on Microsoft Windows could allow a local attacker to disable the scanning functionality of the product. This could allow executable files to be launched on the system without being analyzed for threats. The vulnerability is due to improper process resource handling. An attacker could exploit this vulnerability by gaining local access to a system running Microsoft Windows and protected by Cisco Immunet or Cisco AMP for Endpoints and executing a malicious file. A successful exploit could allow the attacker to prevent the scanning services from functioning properly and ultimately prevent the system from being protected from further intrusion.
Metrics
Affected Vendors & Products
References
History
Tue, 26 Nov 2024 15:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: cisco
Published: 2018-11-08T17:00:00Z
Updated: 2024-11-26T14:22:28.241Z
Reserved: 2018-08-17T00:00:00
Link: CVE-2018-15437
Vulnrichment
Updated: 2024-08-05T09:54:03.458Z
NVD
Status : Modified
Published: 2018-11-08T17:29:00.560
Modified: 2024-11-21T03:50:47.860
Link: CVE-2018-15437
Redhat
No data.