CVE-2020-7283

Name of the Vulnerable Software and Affected Versions McAfee Total Protection versions prior to 16.0.R26

Description The issue is related to insufficient access control in McAfee Total Protection, allowing an attacker to escalate privileges by manipulating symbolic links or running a malicious script or program. This can enable local users to create and edit files in locations they would otherwise not have access to.

Recommendations For versions prior to 16.0.R26, update to version 16.0.R26 or later to resolve the issue. As a temporary workaround, consider restricting access to symbolic link manipulation and avoid running untrusted scripts or programs on the target machine.