Privilege escalation vulnerability in McTray.exe in McAfee Endpoint Security (ENS) for Windows Prior to 10.7.0 April 2020 Update allows local users to spawn unrelated processes with elevated privileges via the system administrator granting McTray.exe elevated privileges (by default it runs with the current user's privileges).
References
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 05:36
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : 4.6
v3 : 6.6 |
References | () https://kc.mcafee.com/corporate/index?page=content&id=SB10309 - |
07 Nov 2023, 03:25
Type | Values Removed | Values Added |
---|---|---|
References | () https://kc.mcafee.com/corporate/index?page=content&id=SB10309 - |
Information
Published : 2020-04-15 12:15
Updated : 2024-11-21 05:36
NVD link : CVE-2020-7274
Mitre link : CVE-2020-7274
CVE.ORG link : CVE-2020-7274
JSON object : View
Products Affected
mcafee
- endpoint_security
CWE
CWE-269
Improper Privilege Management