vulnerability

McAfee Endpoint Security Platform: CVE-2020-7331: Endpoint security for windows update fixes three vulnerabilities (SB10335)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:L/AC:L/Au:N/C:P/I:P/A:P)	Nov 12, 2020	Nov 17, 2020	Dec 21, 2020

Severity

CVSS

(AV:L/AC:L/Au:N/C:P/I:P/A:P)

Published

Nov 12, 2020

Added

Nov 17, 2020

Modified

Dec 21, 2020

Description

Unquoted service executable path in McAfee Endpoint Security (ENS) prior to 10.7.0 November 2020 Update allows local users to cause a denial of service and malicious file execution via carefully crafted and named executable files.

Solution(s)

mcafee-endpoint-security-platform-upgrade-10-6-1-2182mcafee-endpoint-security-platform-upgrade-10-7-0-2174

References

CVE-2020-7331
https://attackerkb.com/topics/CVE-2020-7331
MCAFEE-SB10335

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today