PT-2020-19524 · Mcafee · Mcafee Exploit Detection/Response

Published

2020-05-08

Updated

2020-05-11

CVE-2020-7287

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions McAfee Exploit Detection and Response (EDR) for Linux versions prior to 3.1.0 Hotfix 1

Description The issue allows a malicious script or program to perform functions that the local executing user has not been granted access to. This is a result of a Privilege Escalation vulnerability.

Recommendations For versions prior to 3.1.0 Hotfix 1, update to version 3.1.0 Hotfix 1 or later to resolve the issue. As a temporary workaround, consider restricting the execution of scripts or programs that could potentially exploit this vulnerability until a patch is applied.

Fix

Improper Privilege Management

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-274CWE-269

Related Identifiers

CVE-2020-7287

Affected Products

Mcafee Exploit Detection/Response

PT-2020-19524 · Mcafee · Mcafee Exploit Detection/Response

CVE-2020-7287

Weakness Enumeration

Related Identifiers

Affected Products

References · 4