CVE-2020-7254

HIGH

McAfee Advanced Threat Defense 4.0-4.8.1 - Privilege Escalation via Sudo Command

Title source: llm
STIX 2.1

Description

Privilege Escalation vulnerability in the command line interface in McAfee Advanced Threat Defense (ATD) 4.x prior to 4.8.2 allows local users to execute arbitrary code via improper access controls on the sudo command.

References (1)

Core 1
Core References

Scores

CVSS v3 7.7
EPSS 0.0030
EPSS Percentile 21.9%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:H

Details

CWE
CWE-264 CWE-269
Status published
Products (1)
mcafee/advanced_threat_defense 4.0 - 4.8.2
Published Mar 12, 2020
Tracked Since Feb 18, 2026