Mcafee Endpoint Security (Ens)
Approved changes feed: RSS · Atom
cpe:2.3:a:mcafee,_llc:mcafee_endpoint_security_(ens):*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Mcafee, Llc (29c15f68-63cd-5177-80ed-677606d05f07) |
|---|---|
| Product | Mcafee Endpoint Security (Ens) (3f5ebce9-c521-50d2-bf46-1a6c9a7ebb19) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2020-7331 |
vulnerable | 2026-06-03 14:43:06.054020 |
Unquoted service executable path in McAfee Endpoint Security (ENS)
HIGH (7.8)
Unquoted service executable path in McAfee Endpoint Security (ENS) prior to 10.7.0 November 2020 Update allows local users to cause a denial of service and malicious file execution via carefully crafted and named executable files.
Published: 2020-11-12T09:40:13.442Z
Updated: 2024-09-16T18:18:41.482Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-7251 |
vulnerable | 2026-06-03 14:43:05.903614 |
ESConfig Tool able to edit configuration for newer version
MEDIUM (5)
Improper access control vulnerability in Configuration Tool in McAfee Mcafee Endpoint Security (ENS) Prior to 10.6.1 February 2020 Update allows local users to disable security features via unauthorised use of the configuration tool from older versions of ENS.
Published: 2020-02-14T14:50:14.000Z
Updated: 2024-08-04T09:25:48.459Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2019-3653 |
vulnerable | 2026-06-03 14:40:26.725805 |
ESConfig Tool access not controlled
MEDIUM (4.6)
Improper access control vulnerability in Configuration tool in McAfee Endpoint Security (ENS) Prior to 10.6.1 October 2019 Update allows local user to gain access to security configuration via unauthorized use of the configuration tool.
Published: 2019-10-09T14:21:45.000Z
Updated: 2024-08-04T19:12:09.671Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2019-3652 |
vulnerable | 2026-06-03 14:40:26.723221 |
ENS code injection in EPSetup.exe
MEDIUM (5)
Code Injection vulnerability in EPSetup.exe in McAfee Endpoint Security (ENS) Prior to 10.6.1 October 2019 Update allows local user to get their malicious code installed by the ENS installer via code injection into EPSetup.exe by an attacker with access to the installer.
Published: 2019-10-09T14:21:13.000Z
Updated: 2024-08-04T19:12:09.719Z Reference links |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2019-3586 |
vulnerable | 2026-06-03 14:40:26.632828 |
McAfee Endpoint Security firewall not always acting on GTI lookup results
HIGH (7.5)
Protection Mechanism Failure in the Firewall in McAfee Endpoint Security (ENS) 10.x prior to 10.6.1 May 2019 update allows context-dependent attackers to circumvent ENS protection where GTI flagged IP addresses are not blocked by the ENS Firewall via specially crafted malicious sites where the GTI reputation is carefully manipulated and does not correctly trigger the ENS Firewall to block the connection.
Published: 2019-05-15T15:48:10.000Z
Updated: 2024-08-04T19:12:09.414Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2019-3582 |
vulnerable | 2026-06-03 14:40:26.620961 |
McAfee Endpoint Security updates fix a privilege escalation vulnerability
HIGH (8.6)
Privilege Escalation vulnerability in Microsoft Windows client in McAfee Endpoint Security (ENS) 10.6.1 and earlier allows local users to gain elevated privileges via a specific set of circumstances.
Published: 2019-02-28T16:00:00.000Z
Updated: 2024-08-04T19:12:09.374Z Reference links |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.