CWE
319
Advisory Published
Updated

CVE-2020-7308: Transmission of data in clear text by McAfee ENS

First published: Thu Apr 15 2021(Updated: )

Cleartext Transmission of Sensitive Information between McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 February 2021 Update and McAfee Global Threat Intelligence (GTI) servers using DNS allows a remote attacker to view the requests from ENS and responses from GTI over DNS. By gaining control of an intermediate DNS server or altering the network DNS configuration, it is possible for an attacker to intercept requests and send their own responses.

Credit: psirt@mcafee.com trellixpsirt@trellix.com

Affected SoftwareAffected VersionHow to fix
Mcafee Endpoint Security<=10.6.1
Mcafee Endpoint Security=10.6.1
Mcafee Endpoint Security=10.6.1-april_2020
Mcafee Endpoint Security=10.6.1-december_2018
Mcafee Endpoint Security=10.6.1-december_2019
Mcafee Endpoint Security=10.6.1-february_2019
Mcafee Endpoint Security=10.6.1-february_2020
Mcafee Endpoint Security=10.6.1-july_2019
Mcafee Endpoint Security=10.6.1-july_2020
Mcafee Endpoint Security=10.6.1-may_2019
Mcafee Endpoint Security=10.6.1-november_2018
Mcafee Endpoint Security=10.6.1-november_2020
Mcafee Endpoint Security=10.6.1-october_2019
Mcafee Endpoint Security=10.6.1-september_2020
Mcafee Endpoint Security=10.7.0-february_2020
Mcafee Endpoint Security=10.7.0-july_2020
Mcafee Endpoint Security=10.7.0-november_2020
Mcafee Endpoint Security=10.7.0-september_2020

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Frequently Asked Questions

  • What is the severity of CVE-2020-7308?

    The severity of CVE-2020-7308 is medium (6.5).

  • Which software versions are affected by CVE-2020-7308?

    McAfee Endpoint Security versions prior to 10.7.0 February 2021 Update are affected by CVE-2020-7308.

  • How can a remote attacker exploit CVE-2020-7308?

    A remote attacker can exploit CVE-2020-7308 by viewing the requests from McAfee Endpoint Security (ENS) and responses from McAfee Global Threat Intelligence (GTI) servers over DNS.

  • Is there a fix available for CVE-2020-7308?

    Yes, the fix for CVE-2020-7308 is included in the McAfee Endpoint Security 10.7.0 February 2021 Update.

  • Where can I find more information about CVE-2020-7308?

    You can find more information about CVE-2020-7308 on the McAfee Knowledge Center website.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203