HIGH🇵🇱 Wersja polska

CVE-2021-23882

CVSS 8.2v3.1pub. 2021-02-10upd. 2024-11-21

Improper Access Control vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 February 2021 Update allows local administrators to prevent the installation of some ENS files by placing carefully crafted files where ENS will be installed. This is only applicable to clean installations of ENS as the Access Control rules will prevent modification prior to up an upgrade.

CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
  • Mcafee Endpoint Security

    APP
    Mcafee
    < 10.7.0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2021-31843HIGH7.3ten sam produkt

Improper privileges management vulnerability in McAfee Endpoint Security (ENS) Windows prior to 10.7.0 Septemb...

CVE-2021-23878HIGH7.3ten sam produkt

Clear text storage of sensitive Information in memory vulnerability in McAfee Endpoint Security (ENS) for Wind...

CVE-2020-7331HIGH7.8ten sam produkt

Unquoted service executable path in McAfee Endpoint Security (ENS) prior to 10.7.0 November 2020 Update allows...

CVE-2020-7332HIGH7.0ten sam produkt

Cross Site Request Forgery vulnerability in the firewall ePO extension of McAfee Endpoint Security (ENS) prior...

CVE-2020-7319HIGH8.8ten sam produkt

Improper Access Control vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 September ...