CVE-2020-7311
Summary
| CVE | CVE-2020-7311 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2020-09-10 10:15:00 UTC |
| Updated | 2023-11-07 03:25:00 UTC |
| Description | Privilege Escalation vulnerability in the installer in McAfee Agent (MA) for Windows prior to 5.6.6 allows local users to assume SYSTEM rights during the installation of MA via manipulation of log files. |
Risk And Classification
Problem Types: CWE-269
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Mcafee | Mcafee Agent | All | All | All | All |
| Application | Mcafee | Mcafee Agent | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| McAfee Security Bulletin - McAfee Agent update fixes four vulnerabilities (CVE-2020-7311, CVE-2020-7312, CVE-2020-7314, and CVE-2020-7315) | CONFIRM | kc.mcafee.com | Vendor Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
Vendor Comments And Credit
Discovery Credit
LEGACY: McAfee credits Sebastian Schuster from Airbus CyberSecurity for responsibly reporting this flaw.
There are currently no legacy QID mappings associated with this CVE.