Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mcafee endpoint security vulnerabilities and exploits
(subscribe to this query)
6.3
CVSSv3
CVE-2020-7257
Privilege escalation vulnerability in McAfee Endpoint Security (ENS) for Windows before 10.7.0 February 2020 Update allows local users to cause the deletion and creation of files they would not normally have permission to through altering the target of symbolic links whilst an an...
Mcafee Endpoint Security 10.5.0
Mcafee Endpoint Security 10.5.1
Mcafee Endpoint Security 10.5.2
Mcafee Endpoint Security 10.5.3
Mcafee Endpoint Security 10.5.4
Mcafee Endpoint Security 10.5.5
Mcafee Endpoint Security 10.6.0
1 Github repository
7.8
CVSSv3
CVE-2020-7274
Privilege escalation vulnerability in McTray.exe in McAfee Endpoint Security (ENS) for Windows before 10.7.0 April 2020 Update allows local users to spawn unrelated processes with elevated privileges via the system administrator granting McTray.exe elevated privileges (by default...
Mcafee Endpoint Security 10.5.0
Mcafee Endpoint Security 10.5.1
Mcafee Endpoint Security 10.5.2
Mcafee Endpoint Security 10.5.3
Mcafee Endpoint Security 10.5.4
Mcafee Endpoint Security 10.5.5
Mcafee Endpoint Security 10.6.0
8.4
CVSSv3
CVE-2020-7264
Privilege Escalation vulnerability in McAfee Endpoint Security (ENS) for Windows before 10.7.0 Hotfix 199847 allows local users to delete files the user would otherwise not have access to via manipulating symbolic links to redirect a McAfee delete action to an unintended file. Th...
Mcafee Endpoint Security 10.6.0
Mcafee Endpoint Security 10.7.0
Mcafee Endpoint Security
6.5
CVSSv3
CVE-2020-7308
Cleartext Transmission of Sensitive Information between McAfee Endpoint Security (ENS) for Windows before 10.7.0 February 2021 Update and McAfee Global Threat Intelligence (GTI) servers using DNS allows a remote malicious user to view the requests from ENS and responses from GTI ...
Mcafee Endpoint Security 10.7.0
Mcafee Endpoint Security 10.6.1
Mcafee Endpoint Security
5.5
CVSSv3
CVE-2019-3653
Improper access control vulnerability in Configuration tool in McAfee Endpoint Security (ENS) before 10.6.1 October 2019 Update allows local user to gain access to security configuration via unauthorized use of the configuration tool.
Mcafee Endpoint Security
Mcafee Endpoint Security 10.16.1
7.8
CVSSv3
CVE-2021-31843
Improper privileges management vulnerability in McAfee Endpoint Security (ENS) Windows before 10.7.0 September 2021 Update allows local users to access files which they would otherwise not have access to via manipulating junction links to redirect McAfee folder operations to an u...
Mcafee Endpoint Security
Mcafee Endpoint Security 10.7.0
7.5
CVSSv3
CVE-2019-3586
Protection Mechanism Failure in the Firewall in McAfee Endpoint Security (ENS) 10.x before 10.6.1 May 2019 update allows context-dependent malicious users to circumvent ENS protection where GTI flagged IP addresses are not blocked by the ENS Firewall via specially crafted malicio...
Mcafee Endpoint Security
Mcafee Endpoint Security 10.6.1
5.3
CVSSv3
CVE-2019-3652
Code Injection vulnerability in EPSetup.exe in McAfee Endpoint Security (ENS) before 10.6.1 October 2019 Update allows local user to get their malicious code installed by the ENS installer via code injection into EPSetup.exe by an attacker with access to the installer.
Mcafee Endpoint Security
Mcafee Endpoint Security 10.6.1
5.5
CVSSv3
CVE-2021-31842
XML Entity Expansion injection vulnerability in McAfee Endpoint Security (ENS) for Windows before 10.7.0 September 2021 Update allows a local user to initiate high CPU and memory consumption resulting in a Denial of Service attack through carefully editing the EPDeploy.xml file a...
Mcafee Endpoint Security
Mcafee Endpoint Security 10.7.0
5.3
CVSSv3
CVE-2018-6693
An unprivileged user can delete arbitrary files on a Linux system running ENSLTP 10.5.1, 10.5.0, and 10.2.3 Hotfix 1246778 and previous versions. By exploiting a time of check to time of use (TOCTOU) race condition during a specific scanning sequence, the unprivileged user is abl...
Mcafee Endpoint Security For Linux Threat Prevention
Mcafee Endpoint Security For Linux Threat Prevention 10.5.1
Mcafee Endpoint Security Linux Threat Prevention 10.5.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »