CVE-2020-7327

Name of the Vulnerable Software and Affected Versions McAfee MVISION Endpoint Detection and Response Client versions prior to 3.2.0

Description The issue is related to an improperly implemented security check. This may allow local administrators to execute malicious code by stopping a core Windows service, which leaves the McAfee core trust component in an inconsistent state. As a result, the MVEDR fails open rather than closed.

Recommendations For versions prior to 3.2.0, update to version 3.2.0 or later to resolve the issue. As a temporary workaround, consider restricting access to core Windows services to prevent them from being stopped by local administrators.