CVE Published: 09/09/2020 |
CVE Updated: 16/09/2024 |
CVE Year: 2020 Source: trellix |
Vendor: McAfee LLC |
Product: Endpoint Security for Windows Status : PUBLISHED
CVE-2020-7322 Description
Information Disclosure Vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 September 2020 Update allows local users to gain access to sensitive information via incorrectly logging of sensitive information in debug logs.
Metrics
CVSS Version: 3.1 |
Base Score: 4.7 MEDIUM Vector: CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:L/I:L/A:L
l➤ Exploitability Metrics: Attack Vector (AV)* LOCAL Attack Complexity (AC)* HIGH Privileges Required (PR)* HIGH User Interaction (UI)* REQUIRED Scope (S)* CHANGED