Vulnerability in Mcafee Host_intrusion_prevention
CVE-2020-7279
DLL Search Order Hijacking Vulnerability in the installer component of McAfee Host Intrusion Prevention System (Host IPS) for Windows prior to 8.0.0 Patch 15 Update allows attackers with local access to execute arbitrary code via execution…
EPSS: 0.004 (32.3th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 4.6 (Medium). Vector: CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:L/I:H/A:N.
Affected products
- Mcafee Host_intrusion_prevention — versions 8.0.0
- Mcafee, Llc Mcafee Host Intrusion Prevention System (Host Ips) For Windows — versions 8.0.x
Weakness classification (CWE)
References
- trellixpsirt@trellix.com (x_refsource_CONFIRM)
Frequently asked questions
- What is CVE-2020-7279?
- CVE-2020-7279 is a medium-severity vulnerability in Mcafee Host_intrusion_prevention, classified under Untrusted Search Path. CVSS score: 4.6/10. Published 2020-06-10.
- How severe is CVE-2020-7279?
- Medium severity. CVSS v3 base score is 4.6 out of 10.