CVE-2012-4593
medium
Trellix CVSS v3 Base Score
5.0
AV:N/AC:L/Au:N/C:N/I:P/A:N
EPSS Score
0.2%
Exploitation probability in 30 days
Top 54% most likely to be exploited
Attack Characteristics
Attack Vector
Network
Attack Complexity
Low
Confidentiality
None
Integrity
P
Availability
None
Published: August 22, 2012 (5013 days ago)
Last Modified: April 29, 2026
Vendor: Trellix
Source: NVD
Vulnerability Report
Generated by CyberWatcher
Description
McAfee Application Control and Change Control 5.1.x and 6.0.0 do not enforce an intended password requirement in certain situations involving attributes of the password file, which allows local users to bypass authentication by executing a command.
CWE
CWE-264Affected Products
mcafee application controlmcafee change control