CVE-2020-7323: Authentication Protection Bypass vulnerability in ENS for Windows
First published: Wed Sep 09 2020(Updated: )
Authentication Protection Bypass vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 September 2020 Update allows physical local users to bypass the Windows lock screen via triggering certain detection events while the computer screen is locked and the McTray.exe is running with elevated privileges. This issue is timing dependent and requires physical access to the machine.
Credit: psirt@mcafee.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Mcafee Endpoint Security | <10.7.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for this authentication bypass vulnerability?
The vulnerability ID for this authentication bypass vulnerability is CVE-2020-7323.
What is the affected software?
The affected software is McAfee Endpoint Security (ENS) for Windows prior to version 10.7.0.
How severe is CVE-2020-7323?
CVE-2020-7323 has a severity of 6.9 (medium severity).
How can physical local users bypass the Windows lock screen?
Physical local users can bypass the Windows lock screen by triggering certain detection events while the computer screen is locked and the McTray.exe is running.
How can I fix CVE-2020-7323?
To fix CVE-2020-7323, update McAfee Endpoint Security (ENS) for Windows to version 10.7.0 or later.
- collector/nvd-index
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/title
- agent/weakness
- agent/severity
- agent/references
- agent/last-modified-date
- agent/tags
- agent/softwarecombine
- agent/first-publish-date
- agent/event
- agent/description
- vendor/mcafee
- canonical/mcafee endpoint security