CVE-2020-7250 : Symbolic link manipulation vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 February 2020 Upd

Symbolic link manipulation vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 February 2020 Update allows authenticated local user to potentially gain an escalation of privileges by pointing the link to files which the user which not normally have permission to alter via carefully creating symbolic links from the ENS log file directory.

Published 2020-04-15 13:15:13

Updated 2020-04-21 16:48:06

Source McAfee (DEFUNCT)

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2020-7250

Probability of exploitation activity in the next 30 days: 0.04%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 6 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2020-7250

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
4.6	MEDIUM	AV:L/AC:L/Au:N/C:P/I:P/A:P	3.9	6.4	NIST
Access Vector: Local Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial
7.8	HIGH	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H	1.8	5.9	NIST
Attack Vector: Local Attack Complexity: Low Privileges Required: Low User Interaction: None Scope: Unchanged Confidentiality: High Integrity: High Availability: High
8.2	HIGH	CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H	1.5	6.0	McAfee (DEFUNCT)
Attack Vector: Local Attack Complexity: Low Privileges Required: Low User Interaction: Required Scope: Changed Confidentiality: High Integrity: High Availability: High

CWE ids for CVE-2020-7250

CWE-59 Improper Link Resolution Before File Access ('Link Following')

The product attempts to access a file based on the filename, but it does not properly prevent that filename from identifying a link or shortcut that resolves to an unintended resource.
Assigned by:
- nvd@nist.gov (Primary)
- psirt@mcafee.com (Secondary)

References for CVE-2020-7250

https://kc.mcafee.com/corporate/index?page=content&id=SB10309

McAfee Security Bulletin - Endpoint Security for Windows update fixes multiple vulnerabilities (CVE-2020-7250, CVE-2020-7255, CVE-2020-7257, CVE-2020-7259, CVE-2020-7261, CVE-2020-7273, CVE-2020-7274,
Vendor Advisory

CVEs referencing this url

Products affected by CVE-2020-7250

Mcafee » Endpoint Security » Version: 10.5.0 For Windows
cpe:2.3:a:mcafee:endpoint_security:10.5.0:*:*:*:*:windows:*:*
Matching versions
Mcafee » Endpoint Security » Version: 10.5.1 For Windows
cpe:2.3:a:mcafee:endpoint_security:10.5.1:*:*:*:*:windows:*:*
Matching versions
Mcafee » Endpoint Security » Version: 10.5.2 For Windows
cpe:2.3:a:mcafee:endpoint_security:10.5.2:*:*:*:*:windows:*:*
Matching versions
Mcafee » Endpoint Security » Version: 10.5.3 For Windows
cpe:2.3:a:mcafee:endpoint_security:10.5.3:*:*:*:*:windows:*:*
Matching versions
Mcafee » Endpoint Security » Version: 10.5.4 For Windows
cpe:2.3:a:mcafee:endpoint_security:10.5.4:*:*:*:*:windows:*:*
Matching versions
Mcafee » Endpoint Security » Version: 10.5.5 For Windows
cpe:2.3:a:mcafee:endpoint_security:10.5.5:*:*:*:*:windows:*:*
Matching versions
Mcafee » Endpoint Security » Version: 10.6.0 For Windows
cpe:2.3:a:mcafee:endpoint_security:10.6.0:*:*:*:*:windows:*:*
Matching versions

Vulnerability Details : CVE-2020-7250

Exploit prediction scoring system (EPSS) score for CVE-2020-7250

CVSS scores for CVE-2020-7250

CWE ids for CVE-2020-7250

References for CVE-2020-7250

Products affected by CVE-2020-7250