Web Gateway (MWG) - Privilege Escalation vulnerability
CVE-2020-7297

5.7MEDIUM

Key Information:

Vendor: Mcafee
Status: Mcafee Web Gateway (mwg)
Vendor: CVE Published:; 16 September 2020

Summary

Privilege Escalation vulnerability in McAfee Web Gateway (MWG) prior to 9.2.1 allows authenticated user interface user to access protected dashboard data via improper access control in the user interface.

Affected Version(s)

McAfee Web Gateway (MWG) < 9.2.1

References

https://kc.mcafee.com/corporate/index?page=content&id=SB1...

x_refsource_MISC

CVSS V3.1

Score:

5.7

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Sep 16, 2020
Vulnerability Reserved
Jan 21, 2020