Network Security Management (NSM) - Exposure of Sensitive Information
CVE-2020-7284

8.6HIGH

Key Information:

Vendor: Mcafee
Status: Network Security Management (nsm)
Vendor: CVE Published:; 3 July 2020

What is CVE-2020-7284?

Exposure of Sensitive Information in McAfee Network Security Management (NSM) prior to 10.1.7.7 allows local users to gain unauthorised access to the root account via execution of carefully crafted commands from the restricted command line interface (CLI).

Affected Version(s)

Network Security Management (NSM) < 10.1.7.7

References

https://kc.mcafee.com/corporate/index?page=content&id=SB1...

x_refsource_MISC

CVSS V3.1

Score:

8.6

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 3, 2020
Vulnerability Reserved
Jan 21, 2020

Mcafee

What is CVE-2020-7284?

Affected Version(s)

References

CVSS V3.1

Timeline