Alain Rödel

**Name of the Vulnerable Software and Affected Versions** Harmony Endpoint Security Client for Windows versions E88.10 and below **Description** A local privilege escalation issue has been identified. To exploit this issue, an attacker must first obtain the ability to execute local privileged code on the target system. **Recommendations** For Harmony Endpoint Security Client for Windows versions E88.10 and below, update to a version above E88.10 to resolve the issue. At the moment, there is no information about other specific mitigation measures for this issue.

Name of the Vulnerable Software and Affected Versions: McAfee Endpoint Security (ENS) for Windows versions prior to 10.7.0 February 2021 Update Description: A Null Pointer Dereference issue allows a local administrator to cause Windows to crash via a specific system call which is not handled correctly. This varies by machine and had partial protection prior to the update. Recommendations: For versions prior to 10.7.0 February 2021 Update, update to the February 2021 Update or later to resolve the issue. As a temporary workaround, consider restricting system calls to minimize the risk of exploitation.