Mcafee: >> Data Exchange Layer >> 6.0.0 Security Vulnerabilities
Privilege escalation vulnerability in DXL Broker for Windows prior to 6.0.0.280 allows local users to gain elevated privileges by exploiting weak directory controls in the logs directory. This can lead to a denial-of-service attack on the DXL Broker.
CVSS Score
6.5
EPSS Score
0.0
Published
2022-11-07
Unquoted service executable path in DXL Broker in McAfee Data eXchange Layer (DXL) Framework 6.0.0 and earlier allows local users to cause a denial of service and malicious file execution via carefully crafted and named executable files.
CVSS Score
4.2
EPSS Score
0.001
Published
2020-02-17