Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mcafee endpoint security vulnerabilities and exploits
(subscribe to this query)
4.4
CVSSv3
CVE-2021-23880
Improper Access Control in attribute in McAfee Endpoint Security (ENS) for Windows before 10.7.0 February 2021 Update allows authenticated local administrator user to perform an uninstallation of the anti-malware engine via the running of a specific command with the correct param...
Mcafee Endpoint Security
4.7
CVSSv3
CVE-2020-7322
Information Disclosure Vulnerability in McAfee Endpoint Security (ENS) for Windows before 10.7.0 September 2020 Update allows local users to gain access to sensitive information via incorrectly logging of sensitive information in debug logs.
Mcafee Endpoint Security
6.9
CVSSv3
CVE-2020-7323
Authentication Protection Bypass vulnerability in McAfee Endpoint Security (ENS) for Windows before 10.7.0 September 2020 Update allows physical local users to bypass the Windows lock screen via triggering certain detection events while the computer screen is locked and the McTra...
Mcafee Endpoint Security
7.8
CVSSv3
CVE-2020-7331
Unquoted service executable path in McAfee Endpoint Security (ENS) before 10.7.0 November 2020 Update allows local users to cause a denial of service and malicious file execution via carefully crafted and named executable files.
Mcafee Endpoint Security
4.8
CVSSv3
CVE-2020-7333
Cross site scripting vulnerability in the firewall ePO extension of McAfee Endpoint Security (ENS) before 10.7.0 November 2020 Update allows administrators to inject arbitrary web script or HTML via the configuration wizard.
Mcafee Endpoint Security
5.5
CVSSv3
CVE-2020-7251
Improper access control vulnerability in Configuration Tool in McAfee Mcafee Endpoint Security (ENS) before 10.6.1 February 2020 Update allows local users to disable security features via unauthorised use of the configuration tool from older versions of ENS.
Mcafee Endpoint Security
8.8
CVSSv3
CVE-2020-7332
Cross Site Request Forgery vulnerability in the firewall ePO extension of McAfee Endpoint Security (ENS) before 10.7.0 November 2020 Update allows an malicious user to execute arbitrary HTML code due to incorrect security configuration.
Mcafee Endpoint Security
4.8
CVSSv3
CVE-2021-23881
A stored cross site scripting vulnerability in ePO extension of McAfee Endpoint Security (ENS) before 10.7.0 February 2021 Update allows an ENS ePO administrator to add a script to a policy event which will trigger the script to be run through a browser block page when a local no...
Mcafee Endpoint Security
8.4
CVSSv3
CVE-2020-7265
Privilege Escalation vulnerability in McAfee Endpoint Security (ENS) for Mac before 10.6.9 allows local users to delete files the user would otherwise not have access to via manipulating symbolic links to redirect a McAfee delete action to an unintended file. This is achieved thr...
Mcafee Endpoint Security
8.8
CVSSv3
CVE-2020-7319
Improper Access Control vulnerability in McAfee Endpoint Security (ENS) for Windows before 10.7.0 September 2020 Update allows local users to access files which the user otherwise would not have access to via manipulating symbolic links to redirect McAfee file operations to an un...
Mcafee Endpoint Security
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »