CPE-24678893-95BB-4E50-9C28-1C46996A538A Detail

CPE Details

McAfee Endpoint Security 10.7.0 September 2020 for Windows

Vendor

mcafee

Product

endpoint_security

Version

10.7.0

Created

2021-09-30
16h58 +00:00

Modified

2022-05-23
12h25 +00:00

Official links

CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Notifications manage

List of Notifications

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Parameters

You can specify a title that will be retrieved in the alerts that will be sent out.

CPE ID

Planning

Month

Next run calculation

Day

Weekday

Hour

Minute

Creation date

Last execution

Next execution

Functionality requiring a connection

This feature, which allows you to receive alerts, is only active when you are logged into your account.

CPE Name: cpe:2.3:a:mcafee:endpoint_security:10.7.0:september_2020:::*:windows::

Informations

Vendor

mcafee

Product

endpoint_security

Version

10.7.0

Update

september_2020

Target Software

windows

Related CVE

Open and find in CVE List

CVE ID	Published	Description	Score	Severity
CVE-2021-31843	2021-09-17 11h40 +00:00	Improper privileges management vulnerability in McAfee Endpoint Security (ENS) Windows prior to 10.7.0 September 2021 Update allows local users to access files which they would otherwise not have access to via manipulating junction links to redirect McAfee folder operations to an unintended location.	7.8	High
CVE-2021-31842	2021-09-17 11h35 +00:00	XML Entity Expansion injection vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 September 2021 Update allows a local user to initiate high CPU and memory consumption resulting in a Denial of Service attack through carefully editing the EPDeploy.xml file and then executing the setup process.	5.5	Medium
CVE-2020-7308	2021-04-15 05h40 +00:00	Cleartext Transmission of Sensitive Information between McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 February 2021 Update and McAfee Global Threat Intelligence (GTI) servers using DNS allows a remote attacker to view the requests from ENS and responses from GTI over DNS. By gaining control of an intermediate DNS server or altering the network DNS configuration, it is possible for an attacker to intercept requests and send their own responses.	6.5	Medium
CVE-2020-7264	2020-05-08 11h45 +00:00	Privilege Escalation vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 Hotfix 199847 allows local users to delete files the user would otherwise not have access to via manipulating symbolic links to redirect a McAfee delete action to an unintended file. This is achieved through running a malicious script or program on the target machine.	8.8	High
CVE-2020-7263	2020-04-01 06h40 +00:00	Improper access control vulnerability in ESconfigTool.exe in McAfee Endpoint Security (ENS) for Windows all current versions allows local administrator to alter ENS configuration up to and including disabling all protection offered by ENS via insecurely implemented encryption of configuration for export and import.	6.7	Medium

McAfee Endpoint Security 10.7.0 September 2020 for Windows

CPE Details

CPE Name: cpe:2.3:a:mcafee:endpoint_security:10.7.0:september_2020:*:*:*:windows:*:*

Informations

Vendor

Product

Version

Update

Target Software

Related CVE

CPE Name: cpe:2.3:a:mcafee:endpoint_security:10.7.0:september_2020:::*:windows::