CVE-2015-8992

Published: Mar 14, 2017Modified: May 13, 2026

7.0

Vector

CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 1.0 / Impact: 5.9

Source: NVD

Description

Malicious file execution vulnerability in Intel Security WebAdvisor before 4.0.2, 4.0.1 and 3.7.2 allows attackers to make the product momentarily vulnerable via executing preexisting specifically crafted malware during installation or uninstallation, but not during normal operation.

Affected (5)

Products: Mcafee: Security Webadvisor, Cloud Av, Security Scan Plus

3 products

Security Webadvisor

Security Scan Plus

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Mcafee Security Webadvisor	Version 3.7.2
Mcafee Security Webadvisor	Version 4.0.1
Mcafee Security Webadvisor	Version 4.0.2

Configuration B

2 vulnerable

Vulnerable Software	Affected Versions
Mcafee Cloud Av	All versions
Mcafee Security Scan Plus	All versions

Related CWEs

References (2)

https://service.mcafee.com/webcenter/portal/cp/home/articleview?articleId=TS102462

Source: secure@intel.com

Vendor Advisory

https://service.mcafee.com/webcenter/portal/cp/home/articleview?articleId=TS102462

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.