XML Entity Expansion injection vulnerability in McAfee Endpoint Security (ENS) for Windows before 10.7.0 September 2021 Update allows a local user to initiate high CPU and memory consumption resulting in a Denial of Service attack through carefully editing the EPDeploy.xml file and then executing the setup process.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mcafee endpoint security |
||
mcafee endpoint security 10.7.0 |