vulnerability

McAfee Endpoint Security Platform: CVE-2020-7332: Endpoint security for windows update fixes three vulnerabilities (SB10335)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:N/AC:M/Au:N/C:P/I:P/A:P)	Nov 12, 2020	Nov 17, 2020	Dec 21, 2020

Severity

CVSS

(AV:N/AC:M/Au:N/C:P/I:P/A:P)

Published

Nov 12, 2020

Added

Nov 17, 2020

Modified

Dec 21, 2020

Description

Cross Site Request Forgery vulnerability in the firewall ePO extension of McAfee Endpoint Security (ENS) prior to 10.7.0 November 2020 Update allows an attacker to execute arbitrary HTML code due to incorrect security configuration.

Solutions

mcafee-endpoint-security-platform-upgrade-10-6-1-2182mcafee-endpoint-security-platform-upgrade-10-7-0-2174

References

CVE-2020-7332
https://attackerkb.com/topics/CVE-2020-7332
MCAFEE-SB10335

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today