EUVD-2021-10806

Malware in sbrugna...

CVE-2024-0206

CVE-2024-0206 affects Trellix Anti-Malware Engine prior to the January 2024 release. The root cause is a symbolic link in the Trellix ENS registry folder that a privileged, authenticated local user can create, which the Engine then follows after a scan, potentially removing files the user should ...

CVE-2024-0206

A symbolic link manipulation vulnerability in Trellix Anti-Malware Engine prior to the January 2024 release allows an authenticated local user to potentially gain an escalation of privileges. This was achieved by adding an entry to the registry under the Trellix ENS registry folder with a symboli...

McAfee Endpoint Security for Windows < 10.6.1 / 10.7.0 February 2021 Update Improper Access Control (SB10345) (CVE-2021-23880)

The version of the McAfee Endpoint Security ENS for Windows installed on the remote Windows host is affected by an Improper Access Control vulnerability. An attribute in McAfee Endpoint Security ENS for Windows prior to 10.7.0 February 2021 Update allows an authenticated local administrator user ...

CVE-2021-23880

Improper Access Control in attribute in McAfee Endpoint Security ENS for Windows prior to 10.7.0 February 2021 Update allows authenticated local administrator user to perform an uninstallation of the anti-malware engine via the running of a specific command with the correct parameters...

CVE-2021-23880 Improper Access Control in the ENS installer

Improper Access Control in attribute in McAfee Endpoint Security ENS for Windows prior to 10.7.0 February 2021 Update allows authenticated local administrator user to perform an uninstallation of the anti-malware engine via the running of a specific command with the correct parameters...