CVE-2022-27535
CVE-2022-27535 affects Kaspersky VPN Secure Connection for Windows up to version 21.5. A local authenticated attacker can abuse the app’s Delete All Service Data And Reports feature to perform arbitrary file deletion. Some sources describe potential privilege escalation via crafted symbolic links...