Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mcafee endpoint security vulnerabilities and exploits
(subscribe to this query)
6.7
CVSSv3
CVE-2020-7276
Authentication bypass vulnerability in MfeUpgradeTool in McAfee Endpoint Security (ENS) for Windows before 10.7.0 April 2020 Update allows administrator users to access policy settings via running this tool.
Mcafee Endpoint Security 10.5.0
Mcafee Endpoint Security 10.5.1
Mcafee Endpoint Security 10.5.2
Mcafee Endpoint Security 10.5.3
Mcafee Endpoint Security 10.5.4
Mcafee Endpoint Security 10.5.5
Mcafee Endpoint Security 10.6.0
5.3
CVSSv3
CVE-2020-7277
Protection mechanism failure in all processes in McAfee Endpoint Security (ENS) for Windows before 10.7.0 April 2020 Update allows local users to stop certain McAfee ENS processes, reducing the protection offered.
Mcafee Endpoint Security 10.5.0
Mcafee Endpoint Security 10.5.1
Mcafee Endpoint Security 10.5.2
Mcafee Endpoint Security 10.5.3
Mcafee Endpoint Security 10.5.4
Mcafee Endpoint Security 10.5.5
Mcafee Endpoint Security 10.6.0
8.4
CVSSv3
CVE-2020-7264
Privilege Escalation vulnerability in McAfee Endpoint Security (ENS) for Windows before 10.7.0 Hotfix 199847 allows local users to delete files the user would otherwise not have access to via manipulating symbolic links to redirect a McAfee delete action to an unintended file. Th...
Mcafee Endpoint Security 10.6.0
Mcafee Endpoint Security 10.7.0
Mcafee Endpoint Security
6.5
CVSSv3
CVE-2020-7308
Cleartext Transmission of Sensitive Information between McAfee Endpoint Security (ENS) for Windows before 10.7.0 February 2021 Update and McAfee Global Threat Intelligence (GTI) servers using DNS allows a remote malicious user to view the requests from ENS and responses from GTI ...
Mcafee Endpoint Security 10.7.0
Mcafee Endpoint Security 10.6.1
Mcafee Endpoint Security
7.8
CVSSv3
CVE-2021-31843
Improper privileges management vulnerability in McAfee Endpoint Security (ENS) Windows before 10.7.0 September 2021 Update allows local users to access files which they would otherwise not have access to via manipulating junction links to redirect McAfee folder operations to an u...
Mcafee Endpoint Security
Mcafee Endpoint Security 10.7.0
5.5
CVSSv3
CVE-2019-3653
Improper access control vulnerability in Configuration tool in McAfee Endpoint Security (ENS) before 10.6.1 October 2019 Update allows local user to gain access to security configuration via unauthorized use of the configuration tool.
Mcafee Endpoint Security
Mcafee Endpoint Security 10.16.1
7.5
CVSSv3
CVE-2019-3586
Protection Mechanism Failure in the Firewall in McAfee Endpoint Security (ENS) 10.x before 10.6.1 May 2019 update allows context-dependent malicious users to circumvent ENS protection where GTI flagged IP addresses are not blocked by the ENS Firewall via specially crafted malicio...
Mcafee Endpoint Security
Mcafee Endpoint Security 10.6.1
5.5
CVSSv3
CVE-2021-31842
XML Entity Expansion injection vulnerability in McAfee Endpoint Security (ENS) for Windows before 10.7.0 September 2021 Update allows a local user to initiate high CPU and memory consumption resulting in a Denial of Service attack through carefully editing the EPDeploy.xml file a...
Mcafee Endpoint Security
Mcafee Endpoint Security 10.7.0
7.8
CVSSv3
CVE-2016-8010
Application protections bypass vulnerability in Intel Security McAfee Application Control (MAC) 7.0 and previous versions and Endpoint Security (ENS) 10.2 and previous versions allows local users to bypass local security protection via a command-line utility.
Mcafee Application Control
Mcafee Endpoint Security
7.3
CVSSv3
CVE-2020-7320
Protection Mechanism Failure vulnerability in McAfee Endpoint Security (ENS) for Windows before 10.7.0 September 2020 Update allows local administrator to temporarily reduce the detection capability allowing otherwise detected malware to run via stopping certain Microsoft service...
Mcafee Endpoint Security
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »