Vulnerability Database

296,746

Total vulnerabilities in the database

CVE-2020-7305

Privilege escalation vulnerability in McAfee Data Loss Prevention (DLP) ePO extension prior to 11.5.3 allows a low privileged remote attacker to create new rule sets via incorrect validation of user credentials.

Published: Aug 13, 2020
Updated: Apr 14, 2023
CVE: CVE-2020-7305
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 6.5
AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

CVSS v2:

Severity: Low
Score: 4
AV:N/AC:L/Au:S/C:N/I:P/A:N

CWEs:

CWE-269

Affected Software
References

Software	From	Fixed in
mcafee / data_loss_prevention	11.3.0	11.3.28
mcafee / data_loss_prevention	11.4.0	11.4.200
mcafee / data_loss_prevention	11.5.0	11.5.3

https://kc.mcafee.com/corporate/index?page=content&id=SB10326

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo