Privilege Escalation vulnerability in McAfee Total Protection (MTP) trial installer
CVE-2020-7310

6.9MEDIUM

Key Information:

Vendor: Mcafee,llc
Status: Mcafee Total Protection (mtp) Trial
Vendor: CVE Published:; 21 August 2020

What is CVE-2020-7310?

Privilege Escalation vulnerability in the installer in McAfee McAfee Total Protection (MTP) trial prior to 4.0.161.1 allows local users to change files that are part of write protection rules via manipulating symbolic links to redirect a McAfee file operations to an unintended file.

Affected Version(s)

McAfee Total Protection (MTP) Trial < 4.0.161.1

References

http://service.mcafee.com/FAQDocument.aspx?&id=TS103067

x_refsource_CONFIRM

CVSS V3.1

Score:

6.9

Severity:

MEDIUM

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

High

User Interaction:

Required

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 21, 2020
Vulnerability Reserved
Jan 21, 2020

Mcafee,llc

What is CVE-2020-7310?

Affected Version(s)

References

CVSS V3.1

Timeline