HIGH🇵🇱 Wersja polska

CVE-2021-23873

CVSS 7.8v3.1pub. 2021-02-10upd. 2024-11-21

Privilege Escalation vulnerability in McAfee Total Protection (MTP) prior to 16.0.30 allows a local user to gain elevated privileges and perform arbitrary file deletion as the SYSTEM user potentially causing Denial of Service via manipulating Junction link, after enumerating certain files, at a specific time.

CVSS Vector
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
  • Mcafee Total Protection

    APP
    Mcafee
    < 16.0.30
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
LPEDoS
CWE
References

Related vulnerabilities

CVE-2021-23874HIGH8.2⚠ KEVten sam produkt

Arbitrary Process Execution vulnerability in McAfee Total Protection (MTP) prior to 16.0.30 allows a local use...

CVE-2022-43751HIGH7.8ten sam produkt

McAfee Total Protection prior to version 16.0.49 contains an uncontrolled search path element vulnerability du...

CVE-2022-0280HIGH7.5ten sam produkt

A race condition vulnerability exists in the QuickClean feature of McAfee Total Protection for Windows prior t...

CVE-2021-23872HIGH7.8ten sam produkt

Privilege Escalation vulnerability in the File Lock component of McAfee Total Protection (MTP) prior to 16.0.3...

CVE-2021-23891HIGH7.8ten sam produkt

Privilege Escalation vulnerability in McAfee Total Protection (MTP) prior to 16.0.32 allows a local user to ga...