endpoint security · threatengine.sh

Home/Product/mcafee endpoint security

Product

mcafee endpoint security

97 known vulnerabilities across versions

Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.

Sort Min CVSS Published since

< 7.20.52.200087

An improper access restriction to a folder in Bitdefender Endpoint Security Tools for Mac (BEST) before 7.20.52.200087 allows loca

Exposure of sensitive information to local unauthorized actors in Elastic Agent and Elastic Security Endpoint can lead to loss of

Denial of service vulnerability present shortly after product installation or upgrade, potentially allowed an attacker to render E

Improper Limitation of a Pathname to a Restricted Directory (‘Path Traversal’) vulnerability in the UpdateServer component of

An Incorrect Regular Expression vulnerability in Bitdefender GravityZone Update Server allows an attacker to cause a Server Side R

Local privilege escalation vulnerability potentially allowed an attacker to misuse ESET’s file operations to delete files withou

>= 10.1.2046.0 and < 11.0.2032.0

Unquoted service path in ESET products allows to drop a prepared program to a specific location and run on boot with the NT

Improper validation of the server’s certificate chain in secure traffic scanning feature considered intermediate certificate sig

Local attacker can escalate privileges on affected installations of Check Point Harmony Endpoint/ZoneAlarm Extreme Security. An at

The vulnerability potentially allows an attacker to misuse ESET’s file operations during the module update to delete or move fil

Local privilege escalation in Check Point Endpoint Security Client (version E87.30) via crafted OpenSSL configuration file

>= 2.0.0 and <= 2.4.2

Stormshield Endpoint Security Evolution 2.0.0 through 2.4.2 has Insecure Permissions. An ACL entry on the SES Evolution agent dire

>= 2.0.0 and <= 2.3.2

Stormshield Endpoint Security Evolution 2.0.0 through 2.3.2 has Insecure Permissions. An interactive user can use the SES Evolutio

>= 2.3.0 and < 2.4.1

Stormshield Endpoint Security 2.3.0 through 2.3.2 has Incorrect Access Control that allows an authenticated user can update global

>= 2.3.0 and < 2.4.1

Stormshield Endpoint Security 2.3.0 through 2.3.2 has Incorrect Access Control: authenticated users can read sensitive information

An issue was discovered in the rollback feature of Elastic Endpoint Security for Windows, which could allow unprivileged users to

A timing based side channel exists in the OpenSSL RSA Decryption implementation which could be sufficient to recover a plaintext a

An issue was discovered in the rollback feature of Elastic Endpoint Security for Windows, which could allow unprivileged users to

An issue was discovered in the quarantine feature of Elastic Endpoint Security and Elastic Endgame for Windows, which could allow

Check Point Endpoint before version E86.50 failed to protect against specific registry change which allowed to disable endpoint pr

>= 7.13.0 and <= 7.17.4

A local privilege escalation (LPE) issue was discovered in the ransomware canaries features of Elastic Endpoint Security for Windo

Check Point Endpoint Security Client for Windows versions earlier than E86.40 copy files for forensics reports from a directory wi

>= 6.0 and < 8.0.2053.0

Local privilege escalation in Windows products of ESET allows user who is logged into the system to exploit repair feature of the

>= 6.0 and < 8.0.2053.0

Privilege escalation vulnerability in Windows products of ESET, spol. s r.o. allows attacker to exploit "Repair" and "Uninstall" f

Kaspersky Anti-Virus products for home and Kaspersky Endpoint Security with antivirus databases released before 12 March 2022 had

A denial-of-service issue existed in one of modules that was incorporated in Kaspersky Anti-Virus products for home and Kaspersky

>= 6.6.2046.0 and < 7.3.2055.0

ESET products for Windows allows untrusted process to impersonate the client of a pipe, which can be leveraged by attacker to esca

Users have access to the directory where the installation repair occurs. Since the MS Installer allows regular users to run the re

Stormshield Endpoint Security from 2.1.0 to 2.1.1 has Incorrect Access Control.

>= 2.0.0 and < 2.1.2

Stormshield Endpoint Security before 2.1.2 allows remote code execution.

>= 2.0.0 and < 2.1.2

Stormshield Endpoint Security 2.x before 2.1.2 has Incorrect Access Control.

ESET was made aware of a vulnerability in its consumer and business products for macOS that enables a user logged on to the system

>= 11.1.0 and <= 11.6.0

Possible system denial of service in case of arbitrary changing Firefox browser parameters. An attacker could change specific Fire

Improper privileges management vulnerability in McAfee Endpoint Security (ENS) Windows prior to 10.7.0 September 2021 Update allow

XML Entity Expansion injection vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 September 2021 Update a

>= 2.0.0 and <= 2.0.2

Stormshield Endpoint Security Evolution 2.0.0 through 2.0.2 does not accomplish the intended defense against local administrators

>= 2.0.0 and <= 2.0.2

SES Evolution before 2.1.0 allows duplicating an existing security policy by leveraging access of a user having read-only access t

>= 2.0.0 and <= 2.0.2

SES Evolution before 2.1.0 allows reading some parts of a security policy by leveraging access to a computer having the administra

>= 2.0.0 and <= 2.0.2

SES Evolution before 2.1.0 allows updating some parts of a security policy by leveraging access to a computer having the administr

>= 2.0.0 and <= 2.0.2

SES Evolution before 2.1.0 allows deleting some parts of a security policy by leveraging access to a computer having the administr

>= 2.0.0 and <= 2.0.2

SES Evolution before 2.1.0 allows modifying security policies by leveraging access of a user having read-only access to security p

>= 2.0.0 and <= 2.0.2

SES Evolution before 2.1.0 allows deleting some resources not currently in use by any security policy by leveraging access to a co

Cleartext Transmission of Sensitive Information between McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 February 2021 U

A component of Kaspersky custom boot loader allowed loading of untrusted UEFI modules due to insufficient check of their authentic

A stored cross site scripting vulnerability in ePO extension of McAfee Endpoint Security (ENS) prior to 10.7.0 February 2021 Updat

A Null Pointer Dereference vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 February 2021 Update allows

Improper Access Control vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 February 2021 Update allows lo

Improper Access Control in attribute in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 February 2021 Update allows aut

Clear text storage of sensitive Information in memory vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0

A local (authenticated) low-privileged user can exploit a behavior in an ESET installer to achieve arbitrary file overwrite (delet

Check Point Endpoint Security Client for Windows before version E84.20 allows write access to the directory from which the install

Cross site scripting vulnerability in the firewall ePO extension of McAfee Endpoint Security (ENS) prior to 10.7.0 November 2020 U

Cross Site Request Forgery vulnerability in the firewall ePO extension of McAfee Endpoint Security (ENS) prior to 10.7.0 November

Unquoted service executable path in McAfee Endpoint Security (ENS) prior to 10.7.0 November 2020 Update allows local users to caus

Check Point Endpoint Security for Windows before E84.10 can reach denial of service during clean install of the client which will

Check Point Endpoint Security Client for Windows, with Anti-Bot or Threat Emulation blades installed, before version E83.20, tries

Authentication Protection Bypass vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 September 2020 Update

Information Disclosure Vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 September 2020 Update allows lo

Protection Mechanism Failure vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 September 2020 Update all

Improper Access Control vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 September 2020 Update allows l

An improper authentication vulnerability in Bitdefender Endpoint Security Tools for Windows and Bitdefender Endpoint Security SDK

Improper Authentication vulnerability in Bitdefender Endpoint Security for Mac allows an unprivileged process to restart the main

>= 10.5.0 and < 10.6.9

Privilege Escalation vulnerability in McAfee Endpoint Security (ENS) for Mac prior to 10.6.9 allows local users to delete files th

>= 10.5.0 and < 10.5.5

Privilege Escalation vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 Hotfix 199847 allows local users

ESET Antivirus and Antispyware Module 1553 through 1560 allows a user with limited access rights to create hard links in so

Privilege escalation vulnerability in the administrative user interface in McAfee Endpoint Security (ENS) for Windows prior to 10.

Symbolic link manipulation vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 February 2020 Update allows

Protection mechanism failure in all processes in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 April 2020 Update allo

Authentication bypass vulnerability in MfeUpgradeTool in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 April 2020 Upd

Accessing, modifying or executing executable files vulnerability in the uninstaller in McAfee Endpoint Security (ENS) for Windows

Privilege escalation vulnerability in McTray.exe in McAfee Endpoint Security (ENS) for Windows Prior to 10.7.0 April 2020 Update a

Accessing functionality not properly constrained by ACLs vulnerability in the autorun start-up protection in McAfee Endpoint Secur

Buffer Overflow via Environment Variables vulnerability in AMSI component in McAfee Endpoint Security (ENS) Prior to 10.7.0 Februa

Exploitation of Privilege/Trust vulnerability in file in McAfee Endpoint Security (ENS) Prior to 10.7.0 February 2020 Update allow

Privilege escalation vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 February 2020 Update allows local

Exploiting incorrectly configured access control security levels vulnerability in ENS Firewall in McAfee Endpoint Security (ENS) f

Improper access control vulnerability in ESconfigTool.exe in McAfee Endpoint Security (ENS) for Windows all current versions allow

Improper access control vulnerability in Configuration Tool in McAfee Endpoint Security (ENS) Prior to 10.6.1 February 2020

ESET Cyber Security 6.7.900.0 for macOS allows a local attacker to execute unauthorized commands as root by abusing an undocumente

>= 10.5.0 and <= 10.5.5

Improper access control vulnerability in Configuration tool in McAfee Endpoint Security (ENS) Prior to 10.6.1 October 2019 Update

>= 10.5.0 and <= 10.5.5

Code Injection vulnerability in EPSetup.exe in McAfee Endpoint Security (ENS) Prior to 10.6.1 October 2019 Update allows local use

Check Point Endpoint Security Initial Client for Windows before version E81.30 tries to load a DLL placed in any PATH location on

>= 10.0.0 and <= 10.6.1

Protection Mechanism Failure in the Firewall in McAfee Endpoint Security (ENS) 10.x prior to 10.6.1 May 2019 update allows context

A local attacker can create a hard-link between a file to which the Check Point Endpoint Security client for Windows before E80.96

A hard-link created from log file archive of Check Point ZoneAlarm up to 15.4.062 or Check Point Endpoint Security client for Wind

Privilege Escalation vulnerability in Microsoft Windows client in McAfee Endpoint Security (ENS) 10.6.1 and earlier allows local u

Maliciously misconfigured registry vulnerability in all Microsoft Windows products in McAfee consumer and corporate products allow

Application protections bypass vulnerability in Intel Security McAfee Application Control (MAC) 7.0 and earlier and Endpoint Secur

The esets_daemon service in ESET Endpoint Antivirus for macOS before 6.4.168.0 and Endpoint Security for macOS before 6.4.168.0 do

The McAfee VirusScan Console (mcconsol.exe) in McAfee Active Response (MAR) before 1.1.0.161, Agent (MA) 5.x before 5.0.2 Hotfix 1

The ESET Personal Firewall NDIS filter (EpFwNdis.sys) driver in the Firewall Module Build 1183 (20140214) and earlier in ESET Smar

Unlock.exe in Media Encryption EPM Explorer in Check Point Endpoint Security through E80.50 does not associate password failures w

Media Encryption EPM Explorer in Check Point Endpoint Security through E80.50 does not properly maintain the state of password fai

Untrusted search path vulnerability in TrGUI.exe in the Endpoint Connect (aka EPC) GUI in Check Point Endpoint Security R73.x and

Sophos Anti-Virus and Endpoint Security before 6.0.5, Anti-Virus for Linux before 5.0.10, and other platforms before 4.11 allows r

Heap-based buffer overflow in Sophos Anti-Virus and Endpoint Security before 6.0.5, Anti-Virus for Linux before 5.0.10, and other

Sophos Anti-Virus and Endpoint Security before 6.0.5, Anti-Virus for Linux before 5.0.10, and other platforms before 4.11, when "E

Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities

Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs

Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures

Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1

About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service

threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin