Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2020-7266

Опубликовано: 08 мая 2020
Источник: nvd
CVSS3: 8.8
CVSS3: 8.4
CVSS2: 3.6
EPSS Низкий

Описание

Privilege Escalation vulnerability in McAfee VirusScan Enterprise (VSE) for Windows prior to 8.8 Patch 14 Hotfix 116778 allows local users to delete files the user would otherwise not have access to via manipulating symbolic links to redirect a McAfee delete action to an unintended file. This is achieved through running a malicious script or program on the target machine.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:mcafee:virusscan_enterprise:*:*:*:*:*:linux:*:*
Версия от 1.9.0 (включая) до 1.9.2 (исключая)
cpe:2.3:a:mcafee:virusscan_enterprise:*:*:*:*:*:linux:*:*
Версия от 2.0.0 (включая) до 2.0.3 (исключая)

EPSS

Процентиль: 10%
0.00035
Низкий

8.8 High

CVSS3

8.4 High

CVSS3

3.6 Low

CVSS2

Дефекты

CWE-274
CWE-269

Связанные уязвимости

github логотип

GHSA-v42h-cjgv-79ww

github
больше 3 лет назад

Privilege Escalation vulnerability in McAfee VirusScan Enterprise (VSE) for Windows prior to 8.8 Patch 14 Hotfix 116778 allows local users to delete files the user would otherwise not have access to via manipulating symbolic links to redirect a McAfee delete action to an unintended file. This is achieved through running a malicious script or program on the target machine.

EPSS

Процентиль: 10%
0.00035
Низкий

8.8 High

CVSS3

8.4 High

CVSS3

3.6 Low

CVSS2

Дефекты

CWE-274
CWE-269