Unquoted service executable path in McAfee Endpoint Security (ENS) prior to 10.7.0 November 2020 Update allows local users to cause a denial of service and malicious file execution via carefully crafted and named executable files.
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HMcafee Endpoint Security
APPMcafee< 10.6.1
Related vulnerabilities
Improper privileges management vulnerability in McAfee Endpoint Security (ENS) Windows prior to 10.7.0 Septemb...
Clear text storage of sensitive Information in memory vulnerability in McAfee Endpoint Security (ENS) for Wind...
Improper Access Control vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 February 2...
Cross Site Request Forgery vulnerability in the firewall ePO extension of McAfee Endpoint Security (ENS) prior...
Improper Access Control vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 September ...