CVE-2020-7326

CWE-2903 documents3 sources
Severity
6.7MEDIUM
EPSS
0.1%
top 68.64%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Mcafee,llc Mcafee Active ResponseMcafee Active Response
Timeline
PublishedOct 15
Latest updateMay 24

Description

Improperly implemented security check in McAfee Active Response (MAR) prior to 2.4.4 may allow local administrators to execute malicious code via stopping a core Windows service leaving McAfee core trust component in an inconsistent state resulting in MAR failing open rather than closed

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:HExploitability: 0.8 | Impact: 5.2

Affected Packages2 packages

CVEListV5mcafee,llc/mcafee_active_response2.x2.4.4

🔴Vulnerability Details

2
GHSA
GHSA-f9pc-9r24-4pr7: Improperly implemented security check in McAfee Active Response (MAR) prior to 22022-05-24
CVEList
McAfee MAR - Improperly implemented security check2020-10-15
CVE-2020-7326 (MEDIUM CVSS 6.7) | Improperly implemented security che | cvebase.io