Unrated severityNVD Advisory· Published Nov 12, 2020· Updated Sep 17, 2024
Cross-Site Request Forgery (CSRF) in firewall ePO extension of McAfee Endpoint Security (ENS)
CVE-2020-7332
Description
Cross Site Request Forgery vulnerability in the firewall ePO extension of McAfee Endpoint Security (ENS) prior to 10.7.0 November 2020 Update allows an attacker to execute arbitrary HTML code due to incorrect security configuration.
Affected products
2- Range: <10.7.0
- Mcafee, LLC/Endpoint Security for Windowsv5Range: 10.7.x
Patches
Vulnerability mechanics
References
1- kc.mcafee.com/corporate/indexmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.