|
198991
|
7.0 |
HIGH
Local
|
mcafee
|
mcafee_agent
|
Privilege Escalation vulnerability in the installer in McAfee Agent (MA) for Windows prior to 5.6.6 allows local users to assume SYSTEM rights during the installation of MA via manipulation of log fi…
|
CWE-269
Improper Privilege Management
|
CVE-2020-7311
|
2024-11-21 14:37 |
2020-09-10 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198992
|
7.8 |
HIGH
Local
|
mcafee
|
mvision_endpoint
|
Privilege Escalation vulnerability in McAfee MVISION Endpoint prior to 20.9 Update allows local users to access files which the user otherwise would not have access to via manipulating symbolic links…
|
CWE-59
Link Following
|
CVE-2020-7325
|
2024-11-21 14:37 |
2020-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198993
|
6.1 |
MEDIUM
Local
|
mcafee
|
mvision_endpoint
|
Improper Access Control vulnerability in McAfee MVISION Endpoint prior to 20.9 Update allows local users to bypass security mechanisms and deny access to the SYSTEM folder via incorrectly applied per…
|
CWE-269
Improper Privilege Management
|
CVE-2020-7324
|
2024-11-21 14:37 |
2020-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198994
|
6.9 |
MEDIUM
Physics
|
mcafee
|
endpoint_security
|
Authentication Protection Bypass vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 September 2020 Update allows physical local users to bypass the Windows lock screen via tr…
|
CWE-287
Improper Authentication
|
CVE-2020-7323
|
2024-11-21 14:37 |
2020-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198995
|
4.7 |
MEDIUM
Local
|
mcafee
|
endpoint_security
|
Information Disclosure Vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 September 2020 Update allows local users to gain access to sensitive information via incorrectly log…
|
CWE-532
Inclusion of Sensitive Information in Log Files
|
CVE-2020-7322
|
2024-11-21 14:37 |
2020-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198996
|
7.3 |
HIGH
Local
|
mcafee
|
endpoint_security
|
Protection Mechanism Failure vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 September 2020 Update allows local administrator to temporarily reduce the detection capabilit…
|
NVD-CWE-noinfo
|
CVE-2020-7320
|
2024-11-21 14:37 |
2020-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198997
|
8.8 |
HIGH
Local
|
mcafee
|
endpoint_security
|
Improper Access Control vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 September 2020 Update allows local users to access files which the user otherwise would not have ac…
|
CWE-59
Link Following
|
CVE-2020-7319
|
2024-11-21 14:37 |
2020-09-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198998
|
4.1 |
MEDIUM
Local
|
mcafee
|
true_key
|
Cleartext Storage of Sensitive Information in Memory vulnerability in Microsoft Windows client in McAfee True Key (TK) prior to 6.2.109.2 allows a local user logged in with administrative privileges …
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2020-7299
|
2024-11-21 14:37 |
2020-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
198999
|
9.8 |
CRITICAL
Network
|
bestzip_project
|
bestzip
|
The package bestzip before 2.1.7 are vulnerable to Command Injection via the options param.
|
CWE-78
OS Command
|
CVE-2020-7730
|
2024-11-21 14:37 |
2020-09-4 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
199000
|
6.5 |
MEDIUM
Local
|
rapid7
|
nexpose
|
Rapid7 Nexpose installer version prior to 6.6.40 contains an Unquoted Search Path which may allow an attacker on the local machine to insert an arbitrary file into the executable path. This issue aff…
|
CWE-428
Unquoted Search Path or Element
|
CVE-2020-7382
|
2024-11-21 14:37 |
2020-09-3 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
