Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistTrellixCVELIST:CVE-2020-7334
HistoryOct 15, 2020 - 9:05 a.m.

CVE-2020-7334 Improper privilege assignment vulnerability in the installer component of MACC

2020-10-1509:05:17
CWE-266
trellix
www.cve.org
6
vulnerability
mcafee
privilege assignment
installer
macc

CVSS3

7.7

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H

AI Score

8

Confidence

High

EPSS

0

Percentile

12.6%

JSON

Improper privilege assignment vulnerability in the installer McAfee Application and Change Control (MACC) prior to 8.3.2 allows local administrators to change or update the configuration settings via a carefully constructed MSI configured to mimic the genuine installer. This version adds further controls for installation/uninstallation of software.

CNA Affected

[
  {
    "product": "McAfee Application and Change Control (MACC)",
    "vendor": "McAfee,LLC",
    "versions": [
      {
        "lessThan": "8.3.2",
        "status": "affected",
        "version": "8.x",
        "versionType": "custom"
      }
    ]
  }
]

Related

prion 1
nvd 1
cve 1
prion
prion
Privilege escalation
2020-10-15 09:15:00
nvd
nvd
CVE-2020-7334
2020-10-15 09:15:11
cve
cve
CVE-2020-7334
2020-10-15 09:15:11

CVSS3

7.7

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:H/I:H/A:H

AI Score

8

Confidence

High

EPSS

0

Percentile

12.6%

JSON
Related for CVELIST:CVE-2020-7334
prion1nvd1cve1