Описание
Accessing, modifying or executing executable files vulnerability in the uninstaller in McAfee Endpoint Security (ENS) for Windows Prior to 10.7.0 April 2020 Update allows local users to execute arbitrary code via a carefully crafted input file.
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:mcafee:endpoint_security:10.5.0:*:*:*:*:windows:*:*
cpe:2.3:a:mcafee:endpoint_security:10.5.1:*:*:*:*:windows:*:*
cpe:2.3:a:mcafee:endpoint_security:10.5.2:*:*:*:*:windows:*:*
cpe:2.3:a:mcafee:endpoint_security:10.5.3:*:*:*:*:windows:*:*
cpe:2.3:a:mcafee:endpoint_security:10.5.4:*:*:*:*:windows:*:*
cpe:2.3:a:mcafee:endpoint_security:10.5.5:*:*:*:*:windows:*:*
cpe:2.3:a:mcafee:endpoint_security:10.6.0:*:*:*:*:windows:*:*
EPSS
Процентиль: 32%
0.00121
Низкий
4.8 Medium
CVSS3
5.3 Medium
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-428
CWE-428
Связанные уязвимости
github
больше 3 лет назад
Accessing, modifying or executing executable files vulnerability in the uninstaller in McAfee Endpoint Security (ENS) for Windows Prior to 10.7.0 April 2020 Update allows local users to execute arbitrary code via a carefully crafted input file.
EPSS
Процентиль: 32%
0.00121
Низкий
4.8 Medium
CVSS3
5.3 Medium
CVSS3
4.6 Medium
CVSS2
Дефекты
CWE-428
CWE-428