CVE-2020-7268

McAfee Email Gateway (MEG) - Path Traversal vulnerability

CVSS 4.3 MEDIUMEPSS 1.0%CWE-22

Path Traversal vulnerability in McAfee McAfee Email Gateway (MEG) prior to 7.6.406 allows remote attackers to traverse the file system to access files or directories that are outside of the restricted directory via external input to construct a path name that should be within a restricted directory.

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Produtos afetados

McAfee · McAfee Email Gateway (MEG)

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://kc.mcafee.com/corporate/index?page=content&id=SB10323