Vulnerability in Mcafee Virusscan_enterprise
CVE-2020-7337
Incorrect Permission Assignment for Critical Resource vulnerability in McAfee VirusScan Enterprise (VSE) prior to 8.8 Patch 16 allows local administrators to bypass local security protection through VSE not correctly integrating with Windo…
EPSS: 0.004 (32.5th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 6.5 (Medium). Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H.
Affected products
- Mcafee Virusscan_enterprise — versions 8.8
- Mcafee, Llc Virusscan Enterprise (Vse) — versions 8.8.x
Weakness classification (CWE)
References
- trellixpsirt@trellix.com (x_refsource_CONFIRM)
Frequently asked questions
- What is CVE-2020-7337?
- CVE-2020-7337 is a medium-severity vulnerability in Mcafee Virusscan_enterprise, classified under Incorrect Permission Assignment for Critical Resource. CVSS score: 6.5/10. Published 2020-12-09.
- How severe is CVE-2020-7337?
- Medium severity. CVSS v3 base score is 6.5 out of 10.