Vulnerability: Local Administrators Exploiting Inconsistent State in McAfee MVISION Endpoint Detection and Response Client

Vulnerability: Local Administrators Exploiting Inconsistent State in McAfee MVISION Endpoint Detection and Response Client

CVE-2020-7327 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Improperly implemented security check in McAfee MVISION Endpoint Detection and Response Client (MVEDR) prior to 3.2.0 may allow local administrators to execute malicious code via stopping a core Windows service leaving McAfee core trust component in an inconsistent state resulting in MVEDR failing open rather than closed

Learn more about our Web Application Penetration Testing UK.