Vulnerability Details CVE-2020-7268
Path Traversal vulnerability in McAfee McAfee Email Gateway (MEG) prior to 7.6.406 allows remote attackers to traverse the file system to access files or directories that are outside of the restricted directory via external input to construct a path name that should be within a restricted directory.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 36.9%
CVSS Severity
CVSS v3 Score 4.3
CVSS v2 Score 4.0
References
Products affected by CVE-2020-7268
-
cpe:2.3:a:mcafee:email_gateway:5.6
-
cpe:2.3:a:mcafee:email_gateway:6.7.1
-
cpe:2.3:a:mcafee:email_gateway:7.0
-
cpe:2.3:a:mcafee:email_gateway:7.0.1
-
cpe:2.3:a:mcafee:email_gateway:7.0.2
-
cpe:2.3:a:mcafee:email_gateway:7.0.3
-
cpe:2.3:a:mcafee:email_gateway:7.0.4
-
cpe:2.3:a:mcafee:email_gateway:7.0.5
-
cpe:2.3:a:mcafee:email_gateway:7.5
-
cpe:2.3:a:mcafee:email_gateway:7.5.1
-
cpe:2.3:a:mcafee:email_gateway:7.5.2
-
cpe:2.3:a:mcafee:email_gateway:7.5.3
-
cpe:2.3:a:mcafee:email_gateway:7.5.4
-
cpe:2.3:a:mcafee:email_gateway:7.5.5
-
cpe:2.3:a:mcafee:email_gateway:7.6
-
cpe:2.3:a:mcafee:email_gateway:7.6.1
-
cpe:2.3:a:mcafee:email_gateway:7.6.2
-
cpe:2.3:a:mcafee:email_gateway:7.6.3
-
cpe:2.3:a:mcafee:email_gateway:7.6.4
-
cpe:2.3:a:mcafee:email_gateway:7.6.401