CVE-2020-7319: Improper Access Control Vulnerability in ENS for Windows
First published: Wed Sep 09 2020(Updated: )
Improper Access Control vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 September 2020 Update allows local users to access files which the user otherwise would not have access to via manipulating symbolic links to redirect McAfee file operations to an unintended file.
Credit: psirt@mcafee.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Mcafee Endpoint Security | <10.7.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2020-7319?
The severity of CVE-2020-7319 is high with a severity value of 8.8.
What is the vulnerability in McAfee Endpoint Security?
The vulnerability in McAfee Endpoint Security is an Improper Access Control vulnerability.
What is the affected software version of CVE-2020-7319?
The affected software version of CVE-2020-7319 is McAfee Endpoint Security prior to 10.7.0 September 2020 Update.
How does the vulnerability in McAfee Endpoint Security work?
The vulnerability allows local users to access files they wouldn't have access to by manipulating symbolic links to redirect McAfee file operations.
Where can I find more information about CVE-2020-7319?
More information about CVE-2020-7319 can be found at https://kc.mcafee.com/corporate/index?page=content&id=SB10327.
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/title
- agent/weakness
- agent/severity
- agent/references
- agent/last-modified-date
- agent/tags
- agent/first-publish-date
- agent/event
- agent/description
- vendor/mcafee
- canonical/mcafee endpoint security