Lucene search

TrellixCVELIST:CVE-2022-0280

HistoryMar 10, 2022 - 10:35 p.m.

CVE-2022-0280 McAfee Total Protection (MTP) - File Deletion vulnerability

2022-03-1022:35:09

CWE-367

trellix

www.cve.org

7.5 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:H/A:H

0.0004 Low

EPSS

Percentile

9.5%

JSON

A race condition vulnerability exists in the QuickClean feature of McAfee Total Protection for Windows prior to 16.0.43 that allows a local user to gain privilege elevation and perform an arbitrary file delete. This could lead to sensitive files being deleted and potentially cause denial of service. This attack exploits the way symlinks are created and how the product works with them.

CNA Affected

[
  {
    "product": "McAfee Total Protection for Windows",
    "vendor": "McAfee",
    "versions": [
      {
        "lessThanOrEqual": "16.0.42",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

References

service.mcafee.com/?articleId=TS103271&page=shell&shell=article-view

7.5 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:H/A:H

0.0004 Low

EPSS

Percentile

9.5%

JSON

Related for CVELIST:CVE-2022-0280