CVEs-PoC/2020/CVE-2020-7268.md

### [CVE-2020-7268](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-7268)
![](https://img.shields.io/static/v1?label=Product&message=McAfee%20Email%20Gateway%20(MEG)&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3C%207.6.406%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-22%3A%20Improper%20Limitation%20of%20a%20Pathname%20to%20a%20Restricted%20Directory%20('Path%20Traversal')&color=brighgreen)

### Description

Path Traversal vulnerability in McAfee McAfee Email Gateway (MEG) prior to 7.6.406 allows remote attackers to traverse the file system to access files or directories that are outside of the restricted directory via external input to construct a path name that should be within a restricted directory.

### POC

#### Reference
- https://kc.mcafee.com/corporate/index?page=content&id=SB10323

#### Github
No PoCs found on GitHub currently.