PT-2020-19560 · Mcafee · Mcafee Endpoint Security
Published
2020-11-12
·
Updated
2023-11-15
·
CVE-2020-7331
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
McAfee Endpoint Security (ENS) versions prior to 10.7.0 November 2020 Update
Description
The issue allows local users to cause a denial of service and execute malicious files by creating carefully crafted and named executable files, due to an unquoted service executable path.
Recommendations
For versions prior to 10.7.0 November 2020 Update, update to the November 2020 Update or a later version to resolve the issue.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Mcafee Endpoint Security