CVE-2020-7261

Buffer overwrite in ENS allowed to bypass AMSI protection

CVSS 6.1 MEDIUMEPSS 0.2%CWE-119

Vexday Risk Score

13Low

SSVC decision (CISA)

Track

No exploitation signal → monitor

CVSS 6.1EPSS 0.2%KEV nãoPoC —Nuclei —Metasploit —Patch —

Lifecycle

15 Apr 2020Published on NVD

Recommendation: Monitor — no exploitation signal at the moment.

Buffer Overflow via Environment Variables vulnerability in AMSI component in McAfee Endpoint Security (ENS) Prior to 10.7.0 February 2020 Update allows local users to disable Endpoint Security via a carefully crafted user input.

CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:L/A:N

Affected products

McAfee LLC · McAfee Endpoint Security (ENS)

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://kc.mcafee.com/corporate/index?page=content&id=SB10309