CVE-2020-7254
HIGHMcAfee Advanced Threat Defense 4.0-4.8.1 - Privilege Escalation via Sudo Command
Title source: llmDescription
Privilege Escalation vulnerability in the command line interface in McAfee Advanced Threat Defense (ATD) 4.x prior to 4.8.2 allows local users to execute arbitrary code via improper access controls on the sudo command.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
https://kc.mcafee.com/corporate/index?page=content&id=SB10311
Scores
CVSS v3
7.7
EPSS
0.0010
EPSS Percentile
27.2%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:H
Details
CWE
CWE-269
CWE-264
Status
published
Products (1)
mcafee/advanced_threat_defense
4.0 - 4.8.2
Published
Mar 12, 2020
Tracked Since
Feb 18, 2026