CVE-2020-7330

HIGH

McAfee Total Protection < 4.0.176.1 - Privilege Escalation via Environment Variable Manipulation

Title source: llm
STIX 2.1

Description

Privilege Escalation vulnerability in McAfee Total Protection (MTP) trial prior to 4.0.176.1 allows local users to schedule tasks which call malicious software to execute with elevated privileges via editing of environment variables

References (1)

Core 1
Core References
Various Sources x_refsource_confirm
http://service.mcafee.com/FAQDocument.aspx?&id=TS103082

Scores

CVSS v3 7.5
EPSS 0.0004
EPSS Percentile 13.0%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H

Details

CWE
CWE-269
Status published
Products (1)
mcafee/total_protection < 4.0.176.1
Published Oct 14, 2020
Tracked Since Feb 18, 2026