Autorun Key Manipulation Vulnerability in McAfee Endpoint Security (ENS) for Windows

Autorun Key Manipulation Vulnerability in McAfee Endpoint Security (ENS) for Windows

CVE-2020-7273 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Accessing functionality not properly constrained by ACLs vulnerability in the autorun start-up protection in McAfee Endpoint Security (ENS) for Windows Prior to 10.7.0 April 2020 Update allows local users to delete or rename programs in the autorun key via manipulation of some parameters.

Learn more about our User Device Pen Test.