Mcafee - Endpoint Security For Linux Threat Prevention CVE

Filtered by vendor Mcafee Subscribe

Filtered by product Endpoint Security For Linux Threat Prevention

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2021-23892	1 Mcafee	1 Endpoint Security For Linux Threat Prevention	2021-05-20	6.9 MEDIUM	7.0 HIGH
By exploiting a time of check to time of use (TOCTOU) race condition during the Endpoint Security for Linux Threat Prevention and Firewall (ENSL TP/FW) installation process, a local user can perform a privilege escalation attack to obtain administrator privileges for the purpose of executing arbitrary code through insecure use of predictable temporary file locations.

Vulnerabilities (CVE)