CVE-2020-7324
MEDIUMMcAfee MVISION Endpoint < 20.9 - Improper Access Control via Incorrectly Applied Permissions
Title source: llmDescription
Improper Access Control vulnerability in McAfee MVISION Endpoint prior to 20.9 Update allows local users to bypass security mechanisms and deny access to the SYSTEM folder via incorrectly applied permissions.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
https://kc.mcafee.com/corporate/index?page=content&id=SB10328
Scores
CVSS v3
6.1
EPSS
0.0003
EPSS Percentile
9.5%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H
Details
CWE
CWE-269
Status
published
Products (1)
mcafee/mvision_endpoint
< 20.9
Published
Sep 09, 2020
Tracked Since
Feb 18, 2026