Kaspersky VPN Secure Connection for Windows version up to 21.5 was vulnerable to arbitrary file deletion via abuse of its βDelete All Service Data And Reportsβ feature by the local authenticated attacker.
[
{
"product": "Kaspersky VPN Secure Connection for Windows",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "prior to 21.6"
}
]
}
]