CVE-2020-7314

Privilege Escalation Vulnerability in the installer in McAfee Data Exchange Layer (DXL) Client for Mac shipped with McAfee Agent (MA) for Mac prior to MA 5.6.6 allows local users to run commands as root via incorrectly applied permissions on temporary files.
Configurations

Configuration 1 (hide)

cpe:2.3:a:mcafee:mcafee_agent:*:*:*:*:*:macos:*:*

History

21 Nov 2024, 05:37

Type Values Removed Values Added
References () https://kc.mcafee.com/corporate/index?page=content&id=SB10325 - () https://kc.mcafee.com/corporate/index?page=content&id=SB10325 -
CVSS v2 : 7.2
v3 : 7.8
v2 : 7.2
v3 : 8.2

07 Nov 2023, 03:25

Type Values Removed Values Added
References (CONFIRM) https://kc.mcafee.com/corporate/index?page=content&id=SB10325 - Vendor Advisory () https://kc.mcafee.com/corporate/index?page=content&id=SB10325 -

Information

Published : 2020-09-10 10:15

Updated : 2024-11-21 05:37


NVD link : CVE-2020-7314

Mitre link : CVE-2020-7314

CVE.ORG link : CVE-2020-7314


JSON object : View

Products Affected

mcafee

  • mcafee_agent
CWE
CWE-732

Incorrect Permission Assignment for Critical Resource