CVE-2021-23883

Summary

A Null Pointer Dereference vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 February 2021 Update allows a local administrator to cause Windows to crash via a specific system call which is not handled correctly. This varies by machine and had partial protection prior to this update.

Affected Software

VendorProductVersion RangeStatus
McAfee LLCEndpoint Security (ENS) for Windows10.7.x < 10.7.0 February 2021affected

Weaknesses

  • CWE-476: CWE-476 NULL Pointer Dereference

ADP Enrichment

CVE Program Container

Additional References

References