Unrated severityNVD Advisory· Published Dec 9, 2020· Updated Sep 16, 2024
Incorrect Permission Assignment for Critical Resource
CVE-2020-7337
Description
Incorrect Permission Assignment for Critical Resource vulnerability in McAfee VirusScan Enterprise (VSE) prior to 8.8 Patch 16 allows local administrators to bypass local security protection through VSE not correctly integrating with Windows Defender Application Control via careful manipulation of the Code Integrity checks.
Affected products
2- Range: <8.8 Patch 16
- McAfee, LLC/VirusScan Enterprise (VSE)v5Range: 8.8.x
Patches
Vulnerability mechanics
References
1- kc.mcafee.com/corporate/indexmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.