Improper Handling of Insufficient Privileges

CVE-2020-7287

High

7.8/10

Summary

Privilege Escalation vulnerability in McAfee Exploit Detection and Response (EDR) for Linux prior to 3.1.0 Hotfix 1 allows a malicious script or program to perform functions that the local executing user has not been granted access to.

Attack Complexity: HIGH
Attack Vector: LOCAL
Integrity Impact: HIGH
Scope: CHANGED
User Interaction: NONE
Privileges Required: LOW
Confidentiality Impact: HIGH
Availability Impact: HIGH

CWE-274 - Improper Handling of Insufficient Privileges

The software does not handle or incorrectly handles when it has insufficient privileges to perform an operation, leading to resultant weaknesses.

References

Advisory Timeline

Published May 08, 2020

Improper Handling of Insufficient Privileges

CVE-2020-7287

Summary

CWE-274 - Improper Handling of Insufficient Privileges

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS