Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ens vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2024-0310
A content-security-policy vulnerability in ENS Control browser extension before 10.7.0 Update 15 allows a remote malicious user to alter the response header parameter setting to switch the content security policy into report-only mode, allowing an malicious user to bypass the co...
Trellix Endpoint Security Web Control
Trellix Endpoint Security Web Control 10.7.0
4.4
CVSSv3
CVE-2021-23883
A Null Pointer Dereference vulnerability in McAfee Endpoint Security (ENS) for Windows before 10.7.0 February 2021 Update allows a local administrator to cause Windows to crash via a specific system call which is not handled correctly. This varies by machine and had partial prote...
Mcafee Endpoint Security
5.5
CVSSv3
CVE-2021-31842
XML Entity Expansion injection vulnerability in McAfee Endpoint Security (ENS) for Windows before 10.7.0 September 2021 Update allows a local user to initiate high CPU and memory consumption resulting in a Denial of Service attack through carefully editing the EPDeploy.xml file a...
Mcafee Endpoint Security
Mcafee Endpoint Security 10.7.0
6.3
CVSSv3
CVE-2020-7257
Privilege escalation vulnerability in McAfee Endpoint Security (ENS) for Windows before 10.7.0 February 2020 Update allows local users to cause the deletion and creation of files they would not normally have permission to through altering the target of symbolic links whilst an an...
Mcafee Endpoint Security 10.5.0
Mcafee Endpoint Security 10.5.1
Mcafee Endpoint Security 10.5.2
Mcafee Endpoint Security 10.5.3
Mcafee Endpoint Security 10.5.4
Mcafee Endpoint Security 10.5.5
Mcafee Endpoint Security 10.6.0
1 Github repository
8.4
CVSSv3
CVE-2020-7265
Privilege Escalation vulnerability in McAfee Endpoint Security (ENS) for Mac before 10.6.9 allows local users to delete files the user would otherwise not have access to via manipulating symbolic links to redirect a McAfee delete action to an unintended file. This is achieved thr...
Mcafee Endpoint Security
8.4
CVSSv3
CVE-2020-7264
Privilege Escalation vulnerability in McAfee Endpoint Security (ENS) for Windows before 10.7.0 Hotfix 199847 allows local users to delete files the user would otherwise not have access to via manipulating symbolic links to redirect a McAfee delete action to an unintended file. Th...
Mcafee Endpoint Security 10.6.0
Mcafee Endpoint Security 10.7.0
Mcafee Endpoint Security
6.9
CVSSv3
CVE-2020-7323
Authentication Protection Bypass vulnerability in McAfee Endpoint Security (ENS) for Windows before 10.7.0 September 2020 Update allows physical local users to bypass the Windows lock screen via triggering certain detection events while the computer screen is locked and the McTra...
Mcafee Endpoint Security
7.8
CVSSv3
CVE-2024-0206
A symbolic link manipulation vulnerability in Trellix Anti-Malware Engine prior to the January 2024 release allows an authenticated local user to potentially gain an escalation of privileges. This was achieved by adding an entry to the registry under the Trellix ENS registry fol...
Trellix Anti-malware Engine 6600
5.1
CVSSv3
CVE-2016-3984
The McAfee VirusScan Console (mcconsol.exe) in McAfee Active Response (MAR) prior to 1.1.0.161, Agent (MA) 5.x prior to 5.0.2 Hotfix 1110392 (5.0.2.333), Data Exchange Layer 2.x (DXL) prior to 2.0.1.140.1, Data Loss Prevention Endpoint (DLPe) 9.3 before Patch 6 and 9.4 before Pat...
Mcafee Active Response
Mcafee Data Loss Prevention Endpoint
Mcafee Data Exchange Layer
Mcafee Host Intrusion Prevention
Mcafee Virusscan Enterprise
Mcafee Agent
Mcafee Endpoint Security
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5