CVE-2020-7325 MEDIUM

CVE-2020-7325: Privilege Escalation vulnerability in MVISION Endpoint

Vendor Mcafee Llc
Product MVISION Endpoint
Weakness CWE-59
Published September 9, 2020
Last update September 17, 2024

CVSS base score

5.5/10
Attack vector Local
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality None
Integrity None

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

What the vulnerability does

01Description

Privilege Escalation vulnerability in McAfee MVISION Endpoint prior to 20.9 Update allows local users to access files which the user otherwise would not have access to via manipulating symbolic links to redirect McAfee file operations to an unintended file.

Key dates

02Disclosure timeline

September 9, 2020 CVE published
September 17, 2024 Record updated