CVE-2020-7283
HIGHMcafee Total Protection < 16.0.r26 - Privilege Escalation
Title source: ruleDescription
Privilege Escalation vulnerability in McAfee Total Protection (MTP) before 16.0.R26 allows local users to create and edit files via symbolic link manipulation in a location they would otherwise not have access to. This is achieved through running a malicious script or program on the target machine.
Exploits (1)
nomisec
WORKING POC
13 stars
by RedyOpsResearchLabs · poc
https://github.com/RedyOpsResearchLabs/CVE-2020-7283-McAfee-Total-Protection-MTP-16.0.R26-EoP
References (1)
Core 1
Core References
Various Sources x_refsource_confirm
https://service.mcafee.com/webcenter/portal/cp/home/articleview?articleId=TS103062
Scores
CVSS v3
7.5
EPSS
0.0034
EPSS Percentile
56.6%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:H/A:H
Details
CWE
CWE-274
CWE-269
Status
published
Products (1)
mcafee/total_protection
< 16.0.r26
Published
Jul 03, 2020
Tracked Since
Feb 18, 2026