Arbitrary HTML Code Execution Vulnerability in McAfee Endpoint Security (ENS) Firewall ePO Extension

CVE-2020-7332 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Cross Site Request Forgery vulnerability in the firewall ePO extension of McAfee Endpoint Security (ENS) prior to 10.7.0 November 2020 Update allows an attacker to execute arbitrary HTML code due to incorrect security configuration.

Learn more about our Web Application Penetration Testing UK.