37 matches found
CVE-2020-7331
CVE-2020-7331 describes an issue in McAfee Endpoint Security (ENS) for Windows, where an unquoted service executable path in ENS prior to the 10.7.0 November 2020 Update allows a local user to cause a denial of service and execute malicious files by placing a crafted executable. Public sources (N...
CVE-2016-8010
CVE-2016-8010 affects McAfee Application Control (MAC) v7.0 and earlier and McAfee Endpoint Security (ENS) v10.2 and earlier. Description: a vulnerability allows a local attacker to bypass local security protections via a command‑line utility. The connected documents confirm affected products and...
CVE-2021-23878
CVE-2021-23878 affects McAfee Endpoint Security for Windows prior to 10.7.0 (Feb 2021 Update). The issue is clear-text storage of sensitive information in memory, enabling a local user to view ENS settings and credentials by reading process memory shortly after an administrator applies a configur...
CVE-2021-31843
CVE-2021-31843 affects McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 Sept 2021 Update. The vulnerability is due to improper privileges management that allows a local user to access files they normally cannot by manipulating junction links to redirect McAfee folder operations to an un...
CVE-2021-23881
CVE-2021-23881 is a stored XSS vulnerability in the ePO extension of McAfee Endpoint Security (ENS) for Windows, present before the 10.7.0 February 2021 Update. The issue allows an ENS ePO administrator to inject a script into a policy event that will run through a browser block page when a local...
CVE-2020-7250
Affected product: McAfee Endpoint Security for Windows (ENS) prior to 10.7.0 February 2020 Update. Vulnerability: Symbolic link manipulation that lets an authenticated local user escalate privileges by crafting symbolic links in the ENS log file directory to target files the user typically cannot...
CVE-2020-7251
The CVE-2020-7251 issue affects McAfee Endpoint Security (ENS) for Windows specifically its Configuration Tool. The root cause is improper access control in the Configuration Tool prior to ENS 10.6.1 (February 2020 Update), enabling local users to disable security features via unauthorized use of...
CVE-2016-3984
CVE-2016-3984 affects McAfee VirusScan Console and multiple McAfee components (MAR, MA, DXL, DLPe, MDC, ENS, IPS, VSE) on Windows. Local administrators can bypass self-protection rules and disable the antivirus engine by modifying registry keys. Impact: partial to full antivirus disablement; CVSS...
CVE-2019-3652
CVE-2019-3652 is a local code-injection vulnerability in McAfee Endpoint Security (ENS) for Windows, caused by EPSetup.exe. It allows a local attacker with access to the ENS installer to inject and execute malicious code during installation. Affected versions are prior to 10.6.1 (October 2019 Upd...
CVE-2020-7276
CVE-2020-7276 affects McAfee Endpoint Security (ENS) for Windows before 10.7.0 April 2020 Update. The vulnerability is an authentication bypass in the MfeUpgradeTool that lets administrator users access policy settings by running the tool. Impact is exposure/ modification of policy settings by pr...
CVE-2020-7259
The CVE-2020-7259 entry concerns McAfee Endpoint Security (ENS) for Windows and describes a privilege/trust bypass via a crafted input file in ENS prior to 10.7.0 February 2020 Update. Connected docs indicate related issues in the same ENS release family and list fixes in 10.7.0 (April 2020 Updat...
CVE-2020-7263
CVE-2020-7263 concerns an improper access control vulnerability in McAfee Endpoint Security (ENS) for Windows, affecting ESConfigTool.exe across all current versions. The issue allows a local administrator to alter ENS configuration, up to and including disabling all protection, due to insecurely...
CVE-2021-23880
CVE-2021-23880 affects McAfee Endpoint Security (ENS) for Windows pre-10.7.0 February 2021 Update. An attribute in ENS allows an authenticated local administrator to uninstall the anti‑malware engine by executing a specific command with correct parameters (improper access control). Public sources...
CVE-2021-23882
CVE-2021-23882 affects McAfee Endpoint Security (ENS) for Windows prior to the 10.7.0 February 2021 Update. The issue is an Improper Access Control vulnerability that lets local administrators prevent installation of some ENS files by placing crafted files in the install location. It is described...
CVE-2019-3653
CVE-2019-3653 describes an improper access-control vulnerability in the Configuration tool of McAfee Endpoint Security (ENS). Affected are ENS versions prior to 10.6.1 (October 2019 Update) with local users able to gain access to security configuration via unauthorized use of the Configuration to...
CVE-2020-7265
CVE-2020-7265 affects McAfee Endpoint Security (ENS) for Mac, prior to 10.6.9. A local attacker can escalate privileges by abusing symbolic links to redirect a McAfee delete operation to an unintended file, enabling deletion of files the user otherwise could not access. Root cause is manipulation...
CVE-2020-7308
The CVE-2020-7308 issue affects McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 February 2021 Update, where cleartext transmission of sensitive information occurs between ENS and McAfee GTI servers over DNS. The root cause is the use of DNS for transmitting requests/responses in cleart...
CVE-2020-7264
CVE-2020-7264 affects McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 Hotfix 199847. The issue is a privilege-escalation in which local users can delete files they would not normally access by manipulating symbolic links to redirect a McAfee delete action to an unintended file. Root ca...
CVE-2021-23883
This entry describes CVE-2021-23883: a Null Pointer Dereference in McAfee Endpoint Security (ENS) for Windows prior to the 10.7.0 February 2021 Update. The flaw allows a local administrator to crash Windows by invoking a specific system call that is not handled correctly, with impact described as...
CVE-2021-31842
The CVE-2021-31842 issue affects McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 (Sept 2021 Update). The root cause is an XML Entity Expansion injection in EPDeploy.xml processing, enabling a local user to trigger high CPU and memory usage and cause a Denial of Service. Documents consi...
CVE-2017-4028
CVE-2017-4028 describes a registry misconfiguration vulnerability that affects all Microsoft Windows products within McAfee consumer and corporate offerings. The underlying issue is manipulation of registry parameters to inject arbitrary code into a debugged McAfee process, granting local access ...
CVE-2020-7274
CVE-2020-7274 affects McAfee Endpoint Security for Windows, specifically the McTray.exe component. The vulnerability exists in versions prior to 10.7.0 (April 2020 Update) where local users can request elevated privileges for McTray.exe and, if granted by an administrator, spawn unrelated process...
CVE-2020-7323
McAfee Endpoint Security (ENS) for Windows is affected up to version 10.7.0. The issue is an Authentication Protection Bypass where a local, physically present attacker can bypass the Windows lock screen by triggering certain ENS detection events while McTray.exe is running with elevated privileg...
CVE-2020-7319
CVE-2020-7319 affects McAfee Endpoint Security (ENS) for Windows prior to 10.7.0. The root issue is improper access control allowing local users to access files they should not reach by manipulating symbolic links that redirect McAfee file operations to unintended files. Impact indicators from th...
CVE-2020-7275
CVE-2020-7275 affects McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 April 2020 Update. The vulnerability resides in the ENS uninstaller, where an input file can be crafted by a local attacker to access, modify, or execute arbitrary code. Impact is local: code execution with the attac...
CVE-2020-7333
CVE-2020-7333 is a cross-site scripting vulnerability in the firewall ePO extension of McAfee Endpoint Security (ENS) for Windows, present in versions prior to 10.7.0 (November 2020 Update). The vulnerability allows an attacker with admin access to inject arbitrary web script or HTML via the conf...
CVE-2020-7277
CVE-2020-7277 (McAfee Endpoint Security for Windows) is a local-privilege issue in ENS prior to the 10.7.0 April 2020 Update. The vulnerability is a protection mechanism failure that allows local users to stop certain ENS processes, reducing protection. Connected sources (SB10309) confirm affecte...
CVE-2020-7332
CVE-2020-7332 is a CSRF in the firewall ePO extension of McAfee Endpoint Security (ENS) prior to 10.7.0 November 2020 Update. The root cause is an incorrect security configuration that allows an attacker to execute arbitrary HTML code. Affected product: McAfee ENS with the firewall ePO extension ...
CVE-2020-7261
CVE-2020-7261 affects McAfee Endpoint Security (ENS) in the AMSI component. A buffer overflow via environment variables in ENS prior to 10.7.0 (February 2020 Update) can allow a local attacker to disable Endpoint Security by supplying crafted input. The vulnerability is limited to local access (a...
CVE-2020-7273
CVE-2020-7273 concerns McAfee Endpoint Security (ENS) for Windows, where the autorun start-up protection occasionally fails to constrain access via ACLs in the autorun key. The vulnerability allows a local user to delete or rename programs in the autorun key by manipulating parameters, as describ...
CVE-2020-7255
CVE-2020-7255 is a local privilege-escalation vulnerability in the administrative UI of McAfee Endpoint Security (ENS) for Windows , affected in versions prior to 10.7.0 February 2020 Update . The issue arises because ENS does not properly check user permissions when editing configuration via the...
CVE-2020-7322
CVE-2020-7322 affects McAfee Endpoint Security (ENS) for Windows prior to version 10.7.0. The issue is an information-disclosure in which sensitive data could be exposed via incorrect logging of sensitive information in debug logs. Affected product: ENS for Windows; root cause: improper logging. ...
CVE-2020-7278
McAfee Endpoint Security (ENS) Firewall for Windows is affected by CVE-2020-7278 due to an access-control rule handling flaw. The issue arises in ENS versions prior to 10.7.0 (Feb 2020/April 2020 updates) and 10.6.1 (April 2020 update), where pre-existing firewall rules are not properly enforced ...
CVE-2020-7257
CVE-2020-7257 is a local privilege-escalation in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 February 2020 Update. The vulnerability arises from symbolic-link manipulation that can let an authenticated local user alter files they normally lack permission to modify, specifically whe...
CVE-2019-3586
CVE-2019-3586 affects McAfee Endpoint Security (ENS) Firewall in the 10.x line prior to 10.6.1. The issue is a protection mechanism failure where GTI-reputation-based decisions do not block connections from IPs flagged by GTI, allowing context-dependent attackers to bypass ENS protections via spe...
CVE-2019-3582
CVE-2019-3582 affects McAfee Endpoint Security (ENS) Windows client up to and including version 10.6.1. The connected sources consistently describe a local privilege escalation vulnerability in the Windows client, but do not provide detailed root cause, affected subcomponents, or exact vulnerable...
CVE-2020-7320
The CVE-2020-7320 issue affects McAfee Endpoint Security (ENS) for Windows prior to 10.7.0. It is described as a Protection Mechanism Failure that lets a local administrator temporarily degrade detection by stopping certain Microsoft services, enabling malware that would otherwise be detected to ...