Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
McAfee Endpoint Security firewall not always acting on GTI lookup results
Vulnerability Description
Protection Mechanism Failure in the Firewall in McAfee Endpoint Security (ENS) 10.x prior to 10.6.1 May 2019 update allows context-dependent attackers to circumvent ENS protection where GTI flagged IP addresses are not blocked by the ENS Firewall via specially crafted malicious sites where the GTI reputation is carefully manipulated and does not correctly trigger the ENS Firewall to block the connection.
CVSS Information
N/A
Vulnerability Type
保护机制失效
Vulnerability Title
McAfee Endpoint Security 安全特征问题漏洞
Vulnerability Description
McAfee Endpoint Security(ENS)是美国迈克菲(McAfee)公司的一套提供智能协作和先进的威胁防御的框架。该框架支持对实时通信的整个威胁防御生命周期进行控制并进行可操作的威胁取证等。 McAfee ENS 10.6.1(2019年5月更新)之前的10.x版本中的防火墙存在安全漏洞。攻击者可借助恶意的网站利用该漏洞绕过ENS保护。
CVSS Information
N/A
Vulnerability Type
N/A