39 matches found
EUVD-2019-13219
Malware in sbrugna...
EUVD-2020-28454
Malware in sbrugna...
EUVD-2020-28452
Malware in sbrugna...
EUVD-2020-28412
Malware in sbrugna...
EUVD-2020-28451
Malware in sbrugna...
EUVD-2020-28456
Malware in sbrugna...
McAfee MVISION EDR 操作系统操作系统命令注入漏洞
Mcafee McAfee MVISION EDR is an EDR product from Mcafee, Inc. that collects endpoint action logs and analyzes them with AI to detect malicious actions and take countermeasures. A command injection vulnerability exists in MVISION EDR that allows an authenticated MVEDR administrator to trigger an E...
McAfee MVISION Endpoint Code Issue Vulnerability
McAfee MVISION Endpoint is a set of endpoint security protection software from the U.S. company McAfee McAfee. The software provides enhanced threat detection and correction for Windows systems. A security vulnerability exists in McAfee MVISION Endpoint versions prior to 20.11, which can be...
CVE-2020-7329
Server-side request forgery vulnerability in the ePO extension in McAfee MVISION Endpoint prior to 20.11 allows remote attackers trigger server-side DNS requests to arbitrary domains via carefully constructed XML files loaded by an ePO administrator...
Server side request forgery (ssrf)
Server-side request forgery vulnerability in the ePO extension in McAfee MVISION Endpoint prior to 20.11 allows remote attackers trigger server-side DNS requests to arbitrary domains via carefully constructed XML files loaded by an ePO administrator...
CVE-2020-7329
The CVE-2020-7329 entry applies to McAfee MVISION Endpoint, specifically the ePO extension prior to version 20.11. A server-side request forgery (SSRF) vulnerability exists where an attacker can trigger server-side DNS requests to arbitrary domains by loading carefully constructed XML files via a...
CVE-2020-7329 Server-Side Request Forgery (SSRF) in MVISION Endpoint ePO extension
Server-side request forgery vulnerability in the ePO extension in McAfee MVISION Endpoint prior to 20.11 allows remote attackers trigger server-side DNS requests to arbitrary domains via carefully constructed XML files loaded by an ePO administrator...
CVE-2020-7328
External entity attack vulnerability in the ePO extension in McAfee MVISION Endpoint prior to 20.11 allows remote attackers to gain control of a resource or trigger arbitrary code execution via improper input validation of an HTTP request, where the content for the attack has been loaded into ePO...
CVE-2020-7328 Server-Side Request Forgery (SSRF) in MVISION Endpoint ePO extension
External entity attack vulnerability in the ePO extension in McAfee MVISION Endpoint prior to 20.11 allows remote attackers to gain control of a resource or trigger arbitrary code execution via improper input validation of an HTTP request, where the content for the attack has been loaded into ePO...
CVE-2020-7328
Summary (CVE-2020-7328): McAfee MVISION Endpoint’s ePO extension is affected prior to version 20.11. The issue is a server-side input validation flaw that permits a remote attacker to load attack content into ePO and potentially gain control of a resource or trigger arbitrary code execution via H...
PT-2020-19558 · Mcafee · Mcafee Mvision Endpoint
Name of the Vulnerable Software and Affected Versions: McAfee MVISION Endpoint versions prior to 20.11 Description: A server-side request forgery issue exists, allowing remote attackers to trigger server-side DNS requests to arbitrary domains. This is achieved by loading carefully constructed XML...
PT-2020-19557 · Mcafee · Mcafee Mvision Endpoint
Name of the Vulnerable Software and Affected Versions: McAfee MVISION Endpoint versions prior to 20.11 Description: The issue allows remote attackers to gain control of a resource or trigger arbitrary code execution via improper input validation of an HTTP request. This can occur when the content...
McAfee MVISION Endpoint Access Control Error Vulnerability (CNVD-2020-52033)
McAfee MVISION Endpoint is a set of endpoint security protection software from the U.S. company McAfee McAfee. The software provides enhanced threat detection and correction for Windows systems. Access Control Error Vulnerability in Windows McAfee MVISION Endpoint before version 20.9. The...
McAfee MVISION Endpoint Access Control Error Vulnerability
McAfee MVISION Endpoint is a set of endpoint security protection software from the U.S. company McAfee McAfee. The software provides enhanced threat detection and correction for Windows systems. Access Control Error Vulnerability in Windows McAfee MVISION Endpoint before version 20.9. The...
CVE-2020-7324
Improper Access Control vulnerability in McAfee MVISION Endpoint prior to 20.9 Update allows local users to bypass security mechanisms and deny access to the SYSTEM folder via incorrectly applied permissions...