CVE-2020-7331

Unquoted service executable path in McAfee Endpoint Security (ENS) prior to 10.7.0 November 2020 Update allows local users to cause a denial of service and malicious file execution via carefully crafted and named executable files.
Configurations

Configuration 1 (hide)

cpe:2.3:a:mcafee:endpoint_security:*:*:*:*:*:windows:*:*

History

15 Nov 2023, 19:12

Type Values Removed Values Added
References () https://kc.mcafee.com/corporate/index?page=content&id=SB10335 - () https://kc.mcafee.com/corporate/index?page=content&id=SB10335 - Broken Link
CWE CWE-428

07 Nov 2023, 03:26

Type Values Removed Values Added
References (CONFIRM) https://kc.mcafee.com/corporate/index?page=content&id=SB10335 - Vendor Advisory () https://kc.mcafee.com/corporate/index?page=content&id=SB10335 -
CWE CWE-428

Information

Published : 2020-11-12 10:15

Updated : 2024-02-28 18:08


NVD link : CVE-2020-7331

Mitre link : CVE-2020-7331

CVE.ORG link : CVE-2020-7331


JSON object : View

Products Affected

mcafee

  • endpoint_security
CWE
CWE-428

Unquoted Search Path or Element