23 matches found
EUVD-2019-13219
Malware in sbrugna...
EUVD-2020-28454
Malware in sbrugna...
EUVD-2020-28456
Malware in sbrugna...
EUVD-2020-28412
Malware in sbrugna...
EUVD-2020-28451
Malware in sbrugna...
EUVD-2020-28452
Malware in sbrugna...
McAfee MVISION EDR 操作系统操作系统命令注入漏洞
Mcafee McAfee MVISION EDR is an EDR product from Mcafee, Inc. that collects endpoint action logs and analyzes them with AI to detect malicious actions and take countermeasures. A command injection vulnerability exists in MVISION EDR that allows an authenticated MVEDR administrator to trigger an E...
McAfee MVISION Endpoint Code Issue Vulnerability
McAfee MVISION Endpoint is a set of endpoint security protection software from the U.S. company McAfee McAfee. The software provides enhanced threat detection and correction for Windows systems. A security vulnerability exists in McAfee MVISION Endpoint versions prior to 20.11, which can be...
CVE-2020-7329
Server-side request forgery vulnerability in the ePO extension in McAfee MVISION Endpoint prior to 20.11 allows remote attackers trigger server-side DNS requests to arbitrary domains via carefully constructed XML files loaded by an ePO administrator...
Server side request forgery (ssrf)
Server-side request forgery vulnerability in the ePO extension in McAfee MVISION Endpoint prior to 20.11 allows remote attackers trigger server-side DNS requests to arbitrary domains via carefully constructed XML files loaded by an ePO administrator...
CVE-2020-7329
The CVE-2020-7329 entry applies to McAfee MVISION Endpoint, specifically the ePO extension prior to version 20.11. A server-side request forgery (SSRF) vulnerability exists where an attacker can trigger server-side DNS requests to arbitrary domains by loading carefully constructed XML files via a...
CVE-2020-7328
External entity attack vulnerability in the ePO extension in McAfee MVISION Endpoint prior to 20.11 allows remote attackers to gain control of a resource or trigger arbitrary code execution via improper input validation of an HTTP request, where the content for the attack has been loaded into ePO...
PT-2020-19557 · Mcafee · Mcafee Mvision Endpoint
Name of the Vulnerable Software and Affected Versions: McAfee MVISION Endpoint versions prior to 20.11 Description: The issue allows remote attackers to gain control of a resource or trigger arbitrary code execution via improper input validation of an HTTP request. This can occur when the content...
PT-2020-19558 · Mcafee · Mcafee Mvision Endpoint
Name of the Vulnerable Software and Affected Versions: McAfee MVISION Endpoint versions prior to 20.11 Description: A server-side request forgery issue exists, allowing remote attackers to trigger server-side DNS requests to arbitrary domains. This is achieved by loading carefully constructed XML...
McAfee MVISION Endpoint Access Control Error Vulnerability (CNVD-2020-52033)
McAfee MVISION Endpoint is a set of endpoint security protection software from the U.S. company McAfee McAfee. The software provides enhanced threat detection and correction for Windows systems. Access Control Error Vulnerability in Windows McAfee MVISION Endpoint before version 20.9. The...
McAfee MVISION Endpoint Access Control Error Vulnerability
McAfee MVISION Endpoint is a set of endpoint security protection software from the U.S. company McAfee McAfee. The software provides enhanced threat detection and correction for Windows systems. Access Control Error Vulnerability in Windows McAfee MVISION Endpoint before version 20.9. The...
CVE-2020-7325
Privilege Escalation vulnerability in McAfee MVISION Endpoint prior to 20.9 Update allows local users to access files which the user otherwise would not have access to via manipulating symbolic links to redirect McAfee file operations to an unintended file...
CVE-2020-7324
Improper Access Control vulnerability in McAfee MVISION Endpoint prior to 20.9 Update allows local users to bypass security mechanisms and deny access to the SYSTEM folder via incorrectly applied permissions...
CVE-2020-7324
CVE-2020-7324 affects McAfee MVISION Endpoint. The vulnerability is an Improper Access Control in MVISION Endpoint prior to version 20.9, allowing local users to bypass security mechanisms and deny access to the SYSTEM folder via incorrectly applied permissions. Affected component is the access c...
CVE-2020-7285
The CVE-2020-7285 entry concerns McAfee MVISION Endpoint, affected in versions prior to 20.5.0.94. The vulnerability is a local-priority privilege escalation where a malicious script or program can execute functions the caller should not access. Root cause details beyond the stated privilege esca...