HIGH🇵🇱 Wersja polska

CVE-2020-7280

CVSS 7.8v3.1pub. 2020-06-10upd. 2024-11-21

Privilege Escalation vulnerability during daily DAT updates when using McAfee Virus Scan Enterprise (VSE) prior to 8.8 Patch 15 allows local users to cause the deletion and creation of files they would not normally have permission to through altering the target of symbolic links. This is timing dependent.

CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
  • Mcafee Virusscan Enterprise

    APP
    Mcafee
    8.8
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
LPE
CWE
References

Related vulnerabilities

CVE-2019-3585HIGH7.0ten sam produkt

Privilege Escalation vulnerability in Microsoft Windows client (McTray.exe) in McAfee VirusScan Enterprise (VS...

CVE-2020-7266HIGH8.8ten sam produkt

Privilege Escalation vulnerability in McAfee VirusScan Enterprise (VSE) for Windows prior to 8.8 Patch 14 Hotf...

CVE-2020-7267HIGH8.8ten sam produkt

Privilege Escalation vulnerability in McAfee VirusScan Enterprise (VSE) for Linux prior to 2.0.3 Hotfix 263500...

CVE-2016-8020HIGH8.0ten sam produkt

Improper control of generation of code vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3...

CVE-2016-8022HIGH7.5ten sam produkt

Authentication bypass by spoofing vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and...