Authentication Bypass Vulnerability in MfeUpgradeTool: Unauthorized Access to Policy Settings in McAfee Endpoint Security (ENS)

CVE-2020-7276 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Authentication bypass vulnerability in MfeUpgradeTool in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 April 2020 Update allows administrator users to access policy settings via running this tool.

Learn more about our User Device Pen Test.