PT-2021-15580 · Mcafee · Mcafee Endpoint Security

Published

2021-02-10

Updated

2021-02-16

CVE-2021-23878

CVSS v3.1

7.3

High

Vector

AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: McAfee Endpoint Security (ENS) for Windows versions prior to 10.7.0 February 2021 Update

Description: A local user can view ENS settings and credentials via accessing process memory after the ENS administrator has performed specific actions, such as making a configuration change through the console on their machine. The local user has to access the relevant memory location immediately after the ENS administrator's action to exploit this issue.

Recommendations: For versions prior to 10.7.0 February 2021 Update, update to the February 2021 Update or later to resolve the issue. As a temporary workaround, consider restricting access to the process memory to minimize the risk of exploitation.

Fix

Cleartext Storage of Sensitive Information

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-312

Related Identifiers

CVE-2021-23878

Affected Products

Mcafee Endpoint Security

PT-2021-15580 · Mcafee · Mcafee Endpoint Security

CVE-2021-23878

Weakness Enumeration

Related Identifiers

Affected Products

References · 4