Vulnerability Details CVE-2020-7254
Privilege Escalation vulnerability in the command line interface in McAfee Advanced Threat Defense (ATD) 4.x prior to 4.8.2 allows local users to execute arbitrary code via improper access controls on the sudo command.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 21.5%
CVSS Severity
CVSS v3 Score 7.7
CVSS v2 Score 4.6
References
Products affected by CVE-2020-7254
-
cpe:2.3:a:mcafee:advanced_threat_defense:4.0
-
cpe:2.3:a:mcafee:advanced_threat_defense:4.0.4
-
cpe:2.3:a:mcafee:advanced_threat_defense:4.0.6
-
cpe:2.3:a:mcafee:advanced_threat_defense:4.2
-
cpe:2.3:a:mcafee:advanced_threat_defense:4.2.2
-
cpe:2.3:a:mcafee:advanced_threat_defense:4.4
-
cpe:2.3:a:mcafee:advanced_threat_defense:4.4.2
-
cpe:2.3:a:mcafee:advanced_threat_defense:4.6
-
cpe:2.3:a:mcafee:advanced_threat_defense:4.6.2
-
cpe:2.3:a:mcafee:advanced_threat_defense:4.8