Show filters
13 Total Results
Displaying 11-13 of 13
Sort by:
Attacker Value
Unknown

CVE-2020-7277

Disclosure Date: April 14, 2020 (last updated February 21, 2025)
Protection mechanism failure in all processes in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 April 2020 Update allows local users to stop certain McAfee ENS processes, reducing the protection offered.
Attacker Value
Unknown

CVE-2020-7263

Disclosure Date: March 31, 2020 (last updated February 21, 2025)
Improper access control vulnerability in ESconfigTool.exe in McAfee Endpoint Security (ENS) for Windows all current versions allows local administrator to alter ENS configuration up to and including disabling all protection offered by ENS via insecurely implemented encryption of configuration for export and import.
Attacker Value
Unknown

Endpoint Security for Linux Threat Prevention (ENSLTP) privilege escalation vu…

Disclosure Date: September 18, 2018 (last updated November 08, 2023)
An unprivileged user can delete arbitrary files on a Linux system running ENSLTP 10.5.1, 10.5.0, and 10.2.3 Hotfix 1246778 and earlier. By exploiting a time of check to time of use (TOCTOU) race condition during a specific scanning sequence, the unprivileged user is able to perform a privilege escalation to delete arbitrary files.