CVE-2020-7326 MEDIUM

CVE-2020-7326: McAfee MAR - Improperly implemented security check

Vendor Mcafee,Llc
Product McAfee Active Response
Weakness CWE-290
Published October 15, 2020
Last update September 16, 2024

CVSS base score

6.0/10
Attack vector Local
Attack complexity Low
Privileges required High
User interaction None
Confidentiality None
Integrity High

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H

What the vulnerability does

01Description

Improperly implemented security check in McAfee Active Response (MAR) prior to 2.4.4 may allow local administrators to execute malicious code via stopping a core Windows service leaving McAfee core trust component in an inconsistent state resulting in MAR failing open rather than closed

Key dates

02Disclosure timeline

October 15, 2020 CVE published
September 16, 2024 Record updated