CVE-2020-7254

Summary

Privilege Escalation vulnerability in the command line interface in McAfee Advanced Threat Defense (ATD) 4.x prior to 4.8.2 allows local users to execute arbitrary code via improper access controls on the sudo command.

Affected Software

VendorProductVersion RangeStatus
McAfee, LLCMcAfee Advanced Threat Defense (ATD)4.x < 4.8.2affected

Weaknesses

  • CWE-264: CWE-264 Permissions, Privileges, and Access Controls
  • CWE-269: CWE-269 Improper Privilege Management

ADP Enrichment

CVE Program Container

Additional References

References