Unrated severityNVD Advisory· Published May 8, 2020· Updated Sep 17, 2024

Privilege Escalation vulnerability through symbolic links in VSEL

CVE-2020-7267

Description

Privilege Escalation vulnerability in McAfee VirusScan Enterprise (VSE) for Linux prior to 2.0.3 Hotfix 2635000 allows local users to delete files the user would otherwise not have access to via manipulating symbolic links to redirect a McAfee delete action to an unintended file. This is achieved through running a malicious script or program on the target machine.

Affected products

McAfee/VirusScan Enterprise Linux (VSEL)llm-fuzzy2 versions
<2.0.3 Hotfix 2635000+ 1 more
- (no CPE)range: <2.0.3 Hotfix 2635000
- (no CPE)range: 2.0.x

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

kc.mcafee.com/corporate/indexmitrex_refsource_CONFIRM

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000