← Volver a CVEs
CVE-2021-31843
HIGH7.3
Descripcion
Improper privileges management vulnerability in McAfee Endpoint Security (ENS) Windows prior to 10.7.0 September 2021 Update allows local users to access files which they would otherwise not have access to via manipulating junction links to redirect McAfee folder operations to an unintended location.
Detalles CVE
Puntuacion CVSS v3.17.3
SeveridadHIGH
Vector CVSSCVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
Vector de ataqueLOCAL
ComplejidadLOW
Privilegios requeridosLOW
Interaccion usuarioREQUIRED
Publicado9/17/2021
Ultima modificacion2/24/2026
Fuentenvd
Avistamientos honeypot0
Productos afectados
mcafee:endpoint_security
Debilidades (CWE)
CWE-59CWE-59
Referencias
https://kc.mcafee.com/corporate/index?page=content&id=SB10367(trellixpsirt@trellix.com)
https://kc.mcafee.com/corporate/index?page=content&id=SB10367(af854a3a-2127-422b-91ae-364da2661108)
Correlaciones IOC
Sin correlaciones registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.