Lucene search
K
McafeeMvision Endpoint

6 matches found

CVE
CVE
added 2020/05/08 12:35 p.m.59 views

CVE-2020-7285

The CVE-2020-7285 entry concerns McAfee MVISION Endpoint, affected in versions prior to 20.5.0.94. The vulnerability is a local-priority privilege escalation where a malicious script or program can execute functions the caller should not access. Root cause details beyond the stated privilege esca...

7.8CVSS7.5AI score0.00243EPSS
CVE
CVE
added 2020/11/11 9:10 a.m.59 views

CVE-2020-7328

Summary (CVE-2020-7328): McAfee MVISION Endpoint’s ePO extension is affected prior to version 20.11. The issue is a server-side input validation flaw that permits a remote attacker to load attack content into ePO and potentially gain control of a resource or trigger arbitrary code execution via H...

7.2CVSS7.6AI score0.02082EPSS
CVE
CVE
added 2019/01/23 3:0 p.m.50 views

CVE-2019-3584

McAfee MVision Endpoint vulnerable before 1811 Update 1 (18.11.31.62). A authentication flaw permits authenticated administrator users to remove MVision Endpoint via unspecified vectors. Affected product/version: MVision Endpoint prior to 1811 Update 1. Underlying cause: authentication-based acce...

7.4CVSS6AI score0.00335EPSS
CVE
CVE
added 2020/09/09 9:45 a.m.43 views

CVE-2020-7325

CVE-2020-7325 affects McAfee MVISION Endpoint prior to 20.9 Update. It describes a local privilege escalation where an attacker can access files the user normally cannot by manipulating symbolic links to redirect McAfee file operations to an unintended file. The description confirms affected prod...

7.8CVSS6.2AI score0.00327EPSS
CVE
CVE
added 2020/09/09 9:40 a.m.41 views

CVE-2020-7324

CVE-2020-7324 affects McAfee MVISION Endpoint. The vulnerability is an Improper Access Control in MVISION Endpoint prior to version 20.9, allowing local users to bypass security mechanisms and deny access to the SYSTEM folder via incorrectly applied permissions. Affected component is the access c...

6.1CVSS6.2AI score0.00254EPSS
CVE
CVE
added 2020/11/11 9:15 a.m.40 views

CVE-2020-7329

The CVE-2020-7329 entry applies to McAfee MVISION Endpoint, specifically the ePO extension prior to version 20.11. A server-side request forgery (SSRF) vulnerability exists where an attacker can trigger server-side DNS requests to arbitrary domains by loading carefully constructed XML files via a...

7.2CVSS7.1AI score0.01631EPSS