CVE-2021-23880

Improper Access Control in attribute in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 February 2021 Update allows authenticated local administrator user to perform an uninstallation of the anti-malware engine via the running of a specific command with the correct parameters.
References
Configurations

Configuration 1 (hide)

cpe:2.3:a:mcafee:endpoint_security:*:*:*:*:*:windows:*:*

History

21 Nov 2024, 05:51

Type Values Removed Values Added
CVSS v2 : 2.1
v3 : 4.4
v2 : 2.1
v3 : 6.7
References () https://kc.mcafee.com/corporate/index?page=content&id=SB10345 - Broken Link, Vendor Advisory () https://kc.mcafee.com/corporate/index?page=content&id=SB10345 - Broken Link, Vendor Advisory

16 Nov 2023, 02:25

Type Values Removed Values Added
CWE NVD-CWE-Other
References () https://kc.mcafee.com/corporate/index?page=content&id=SB10345 - () https://kc.mcafee.com/corporate/index?page=content&id=SB10345 - Broken Link, Vendor Advisory

07 Nov 2023, 03:30

Type Values Removed Values Added
CWE CWE-269
References (CONFIRM) https://kc.mcafee.com/corporate/index?page=content&id=SB10345 - Vendor Advisory () https://kc.mcafee.com/corporate/index?page=content&id=SB10345 -

Information

Published : 2021-02-10 10:15

Updated : 2024-11-21 05:51


NVD link : CVE-2021-23880

Mitre link : CVE-2021-23880

CVE.ORG link : CVE-2021-23880


JSON object : View

Products Affected

mcafee

  • endpoint_security
CWE
CWE-269

Improper Privilege Management

NVD-CWE-Other