CVE-2020-7322

CWE-532Log File Information Exposure3 documents3 sources
Severity
4.7MEDIUM
EPSS
0.1%
top 81.54%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Mcafee LLC Endpoint Security FOR WindowsMcafee Endpoint Security
Timeline
PublishedSep 9
Latest updateMay 24

Description

Information Disclosure Vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 September 2020 Update allows local users to gain access to sensitive information via incorrectly logging of sensitive information in debug logs.

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:L/I:L/A:LExploitability: 0.6 | Impact: 3.7

Affected Packages2 packages

CVEListV5mcafee_llc/endpoint_security_for_windows10.7.x10.7.0 September 2020 Update

🔴Vulnerability Details

2
GHSA
GHSA-9g6r-m8wp-hqcv: Information Disclosure Vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 102022-05-24
CVEList
Exposure of Sensitive Information in ENS for Windows2020-09-09
CVE-2020-7322 (MEDIUM CVSS 4.7) | Information Disclosure Vulnerabilit | cvebase.io