← Back

Advanced Malware Protection

advanced_malware_protection

Vendor: Cisco • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2020-14418
3Cisco
MadshiMorphisec
3Advanced Malware Protection
MadcodehookUnified Threat Prevention Platform
Nov 21, 2024
Jan 30, 2021
N/A· v4
7.0 HIGH· v3
6.9 MEDIUM· v2
A TOCTOU vulnerability exists in madCodeHook before 2020-07-16 that allows local attackers to elevate their privileges to SYSTEM. This occurs because path redirection can occur via vectors involving directory junctions.
CVE-2017-12317
1Cisco
1Advanced Malware Protection
May 13, 2026
Oct 22, 2017
N/A· v4
6.7 MEDIUM· v3
4.6 MEDIUM· v2
The Cisco AMP For Endpoints application allows an authenticated, local attacker to access a static key value stored in the local application software. The vulnerability is due to the use of a static key value stored in t...Show more
The Cisco AMP For Endpoints application allows an authenticated, local attacker to access a static key value stored in the local application software. The vulnerability is due to the use of a static key value stored in the application used to encrypt the connector protection password. An attacker could exploit this vulnerability by gaining local, administrative access to a Windows host and stopping the Cisco AMP for Endpoints service. Cisco Bug IDs: CSCvg42904.Show less