Unrated severityNVD Advisory· Published Jun 10, 2020· Updated Sep 16, 2024
Symbolic Link vulnerability during DAT update
CVE-2020-7280
Description
Privilege Escalation vulnerability during daily DAT updates when using McAfee Virus Scan Enterprise (VSE) prior to 8.8 Patch 15 allows local users to cause the deletion and creation of files they would not normally have permission to through altering the target of symbolic links. This is timing dependent.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <8.8 Patch 15
- McAfee, LLC/McAfee VirusScan Enterprise (VSE)v5Range: 8.8.x
Patches
Vulnerability mechanics
References
2- kc.mcafee.com/corporate/indexmitrex_refsource_CONFIRM
- www.zerodayinitiative.com/advisories/ZDI-20-702/mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.