VYPR
Unrated severityNVD Advisory· Published Sep 4, 2020· Updated Sep 16, 2024

Sensitive Data Exposure vulnerability in McAfee True Key Windows Client

CVE-2020-7299

Description

Cleartext Storage of Sensitive Information in Memory vulnerability in Microsoft Windows client in McAfee True Key (TK) prior to 6.2.109.2 allows a local user logged in with administrative privileges to access to another user’s passwords on the same machine via triggering a process dump in specific situations.

Affected products

2
  • McAfee/True Keyllm-create
    Range: <6.2.109.2
  • McAfee,LLC/McAfee True Key Windows clientv5
    Range: 6.x

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.