### [CVE-2020-7331](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7331)
![](https://img.shields.io/static/v1?label=Product&message=McAfee%20Endpoint%20Security%20(ENS)&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-428%20Unquoted%20Search%20Path%20or%20Element&color=brighgreen)

### Description

Unquoted service executable path in McAfee Endpoint Security (ENS) prior to 10.7.0 November 2020 Update allows local users to cause a denial of service and malicious file execution via carefully crafted and named executable files.

### POC

#### Reference
- https://kc.mcafee.com/corporate/index?page=content&id=SB10335
- https://kc.mcafee.com/corporate/index?page=content&id=SB10335

#### Github
No PoCs found on GitHub currently.