Endpoint Security@10.7.0 Security Vulnerabilities and Issues — Endpoint Security@10.7.0 CVE List

Lucene search

McafeeEndpoint Security10.7.0

3 matches found

CVE•added 2021/09/17 2:15 p.m.•54 views

CVE-2021-31843

Improper privileges management vulnerability in McAfee Endpoint Security (ENS) Windows prior to 10.7.0 September 2021 Update allows local users to access files which they would otherwise not have access to via manipulating junction links to redirect McAfee folder operations to an unintended locatio...

7.8CVSS7.2AI score0.00102EPSS

CVE•added 2021/09/17 2:15 p.m.•44 views

CVE-2021-31842

XML Entity Expansion injection vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 September 2021 Update allows a local user to initiate high CPU and memory consumption resulting in a Denial of Service attack through carefully editing the EPDeploy.xml file and then executing...

5.5CVSS5.5AI score0.00048EPSS

CVE•added 2021/04/15 8:15 a.m.•40 views

CVE-2020-7308

Cleartext Transmission of Sensitive Information between McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 February 2021 Update and McAfee Global Threat Intelligence (GTI) servers using DNS allows a remote attacker to view the requests from ENS and responses from GTI over DNS. By gaining co...

6.5CVSS5.8AI score0.00091EPSS