First published: Thu Mar 12 2020(Updated: )
Improper access control vulnerability in masvc.exe in McAfee Agent (MA) prior to 5.6.4 allows local users with administrator privileges to disable self-protection via a McAfee supplied command-line utility.
Credit: psirt@mcafee.com
Affected Software | Affected Version | How to fix |
---|---|---|
Mcafee Agent | >=5.5.0<5.5.4 | |
Mcafee Agent | >=5.6.0<5.6.4 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this vulnerability is CVE-2020-7253.
The title of this vulnerability is 'Improper access control vulnerability in masvc.exe in McAfee Agent (MA) prior to 5.6.4 allows local users with administrator privileges to disable self-protection via a McAfee supplied command-line utility.'
The severity of CVE-2020-7253 is medium with a CVSS score of 4.4.
McAfee Agent versions prior to 5.6.4 and between 5.5.0 to 5.5.4 are affected by CVE-2020-7253.
To fix the vulnerability, update McAfee Agent to version 5.6.4 or later.