Vulnerabilities > Mcafee > Endpoint Security FOR Linux Threat Prevention

DATE CVE VULNERABILITY TITLE RISK
2021-05-12 CVE-2021-23892 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Mcafee Endpoint Security for Linux Threat Prevention
By exploiting a time of check to time of use (TOCTOU) race condition during the Endpoint Security for Linux Threat Prevention and Firewall (ENSL TP/FW) installation process, a local user can perform a privilege escalation attack to obtain administrator privileges for the purpose of executing arbitrary code through insecure use of predictable temporary file locations.
local
high complexity
mcafee CWE-367
7.0
2018-09-18 CVE-2018-6693 Time-of-check Time-of-use (TOCTOU) Race Condition vulnerability in Mcafee products
An unprivileged user can delete arbitrary files on a Linux system running ENSLTP 10.5.1, 10.5.0, and 10.2.3 Hotfix 1246778 and earlier.
local
high complexity
mcafee CWE-367
5.3