What is CVE-2020-7290?

CVE-2020-7290 is a high-severity vulnerability in Mcafee,llc Mcafee Active Response (Mar) For Linux, classified under Improper Handling of Insufficient Privileges. CVSS score: 7.8/10. Published 2020-05-08.

How severe is CVE-2020-7290?

High severity. CVSS v3 base score is 7.8 out of 10.

Vulnerability in Mcafee,llc Mcafee Active Response (Mar) For Linux

CVE-2020-7290

Privilege Escalation vulnerability in McAfee Active Response (MAR) for Linux prior to 2.4.3 Hotfix 1 allows a malicious script or program to perform functions that the local executing user has not been granted access to.

EPSS: 0.000 (15.2th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.8 (High). Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H.

Affected products

Mcafee,llc Mcafee Active Response (Mar) For Linux — versions 2.4.x

Weakness classification (CWE)

CWE-274 — Improper Handling of Insufficient Privileges

References

kc.mcafee.com/corporate/index (x_refsource_CONFIRM)

Frequently asked questions

What is CVE-2020-7290?: CVE-2020-7290 is a high-severity vulnerability in Mcafee,llc Mcafee Active Response (Mar) For Linux, classified under Improper Handling of Insufficient Privileges. CVSS score: 7.8/10. Published 2020-05-08.
How severe is CVE-2020-7290?: High severity. CVSS v3 base score is 7.8 out of 10.