CVE-2020-7334

Summary

Improper privilege assignment vulnerability in the installer McAfee Application and Change Control (MACC) prior to 8.3.2 allows local administrators to change or update the configuration settings via a carefully constructed MSI configured to mimic the genuine installer. This version adds further controls for installation/uninstallation of software.

Affected Software

VendorProductVersion RangeStatus
McAfee,LLCMcAfee Application and Change Control (MACC)8.x < 8.3.2affected

Weaknesses

  • CWE-266: CWE-266 Incorrect Privilege Assignment

ADP Enrichment

CVE Program Container

Additional References

References