Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mcafee endpoint security 10.7.0 vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2020-7332
Cross Site Request Forgery vulnerability in the firewall ePO extension of McAfee Endpoint Security (ENS) before 10.7.0 November 2020 Update allows an malicious user to execute arbitrary HTML code due to incorrect security configuration.
Mcafee Endpoint Security
6.4
CVSSv2
CVE-2020-7308
Cleartext Transmission of Sensitive Information between McAfee Endpoint Security (ENS) for Windows before 10.7.0 February 2021 Update and McAfee Global Threat Intelligence (GTI) servers using DNS allows a remote malicious user to view the requests from ENS and responses from GTI ...
Mcafee Endpoint Security 10.7.0
Mcafee Endpoint Security 10.6.1
Mcafee Endpoint Security
5.9
CVSSv2
CVE-2020-7323
Authentication Protection Bypass vulnerability in McAfee Endpoint Security (ENS) for Windows before 10.7.0 September 2020 Update allows physical local users to bypass the Windows lock screen via triggering certain detection events while the computer screen is locked and the McTra...
Mcafee Endpoint Security
4.9
CVSSv2
CVE-2021-23883
A Null Pointer Dereference vulnerability in McAfee Endpoint Security (ENS) for Windows before 10.7.0 February 2021 Update allows a local administrator to cause Windows to crash via a specific system call which is not handled correctly. This varies by machine and had partial prote...
Mcafee Endpoint Security
4.6
CVSSv2
CVE-2021-31843
Improper privileges management vulnerability in McAfee Endpoint Security (ENS) Windows before 10.7.0 September 2021 Update allows local users to access files which they would otherwise not have access to via manipulating junction links to redirect McAfee folder operations to an u...
Mcafee Endpoint Security
Mcafee Endpoint Security 10.7.0
4.6
CVSSv2
CVE-2020-7331
Unquoted service executable path in McAfee Endpoint Security (ENS) before 10.7.0 November 2020 Update allows local users to cause a denial of service and malicious file execution via carefully crafted and named executable files.
Mcafee Endpoint Security
4.6
CVSSv2
CVE-2020-7319
Improper Access Control vulnerability in McAfee Endpoint Security (ENS) for Windows before 10.7.0 September 2020 Update allows local users to access files which the user otherwise would not have access to via manipulating symbolic links to redirect McAfee file operations to an un...
Mcafee Endpoint Security
4.6
CVSSv2
CVE-2020-7250
Symbolic link manipulation vulnerability in McAfee Endpoint Security (ENS) for Windows before 10.7.0 February 2020 Update allows authenticated local user to potentially gain an escalation of privileges by pointing the link to files which the user which not normally have permissio...
Mcafee Endpoint Security 10.5.0
Mcafee Endpoint Security 10.5.1
Mcafee Endpoint Security 10.5.2
Mcafee Endpoint Security 10.5.3
Mcafee Endpoint Security 10.5.4
Mcafee Endpoint Security 10.5.5
Mcafee Endpoint Security 10.6.0
4.6
CVSSv2
CVE-2020-7275
Accessing, modifying or executing executable files vulnerability in the uninstaller in McAfee Endpoint Security (ENS) for Windows before 10.7.0 April 2020 Update allows local users to execute arbitrary code via a carefully crafted input file.
Mcafee Endpoint Security 10.5.0
Mcafee Endpoint Security 10.5.1
Mcafee Endpoint Security 10.5.2
Mcafee Endpoint Security 10.5.3
Mcafee Endpoint Security 10.5.4
Mcafee Endpoint Security 10.5.5
Mcafee Endpoint Security 10.6.0
4.6
CVSSv2
CVE-2020-7274
Privilege escalation vulnerability in McTray.exe in McAfee Endpoint Security (ENS) for Windows before 10.7.0 April 2020 Update allows local users to spawn unrelated processes with elevated privileges via the system administrator granting McTray.exe elevated privileges (by default...
Mcafee Endpoint Security 10.5.0
Mcafee Endpoint Security 10.5.1
Mcafee Endpoint Security 10.5.2
Mcafee Endpoint Security 10.5.3
Mcafee Endpoint Security 10.5.4
Mcafee Endpoint Security 10.5.5
Mcafee Endpoint Security 10.6.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3080
log injection
CVE-2024-6041
CVE-2024-37661
XML external entity
CVE-2024-0845
privilege escalation
CVE-2023-37057
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »