Detections
Analytics
McAfee VirusScan Enterprise < 8.8 Patch 14 Hotfix 116778 Privilege Escalation Vulnerability (SB10316)
high Nessus Plugin ID 136668
Language:
Synopsis
The antivirus application installed on the remote Windows host is affected by a privilege escalation vulnerability.Description
The version of McAfee VirusScan Enterprise (VSE) installed on the remote Windows host is prior to 8.8 Patch 14 Hotfix 116778. It is, therefore, affected by a privilege escalation vulnerability.Solution
Upgrade to McAfee VirusScan Enterprise version 8.8 Patch 14 Hotfix 116778.See Also
https://kc.mcafee.com/corporate/index?page=content&id=SB10316
Plugin Details
Severity: High
ID: 136668
File Name: mcafee_vse_sb10316.nasl
Version: 1.4
Type: local
Agent: windows
Family: Windows
Published: 5/15/2020
Updated: 7/2/2020
Supported Sensors: Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 6.3
CVSS v2
Risk Factor: Low
Base Score: 3.6
Temporal Score: 2.7
Vector: CVSS2#AV:L/AC:L/Au:N/C:N/I:P/A:P
CVSS Score Source: CVE-2020-7266
CVSS v3
Risk Factor: High
Base Score: 8.4
Temporal Score: 7.3
Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:H
Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C
Vulnerability Information
CPE: cpe:/a:mcafee:virusscan_enterprise
Required KB Items: Antivirus/McAfee/installed
Exploit Ease: No known exploits are available
Patch Publication Date: 4/23/2020
Vulnerability Publication Date: 4/23/2020
Reference Information
CVE: CVE-2020-7266
IAVA: 2020-A-0202
MCAFEE-SB: SB10316