← volver
CVE-2021-23873

McAfee Total Protection (MTP) privilege escalation vulnerability

CVSS 7.8 HIGHEPSS 0.7%CWE-59
Privilege Escalation vulnerability in McAfee Total Protection (MTP) prior to 16.0.30 allows a local user to gain elevated privileges and perform arbitrary file deletion as the SYSTEM user potentially causing Denial of Service via manipulating Junction link, after enumerating certain files, at a specific time.
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
Productos afectados
McAfee,LLC · McAfee Total Protection (MTP)

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://service.mcafee.com/FAQDocument.aspx?&id=TS103114https://www.zerodayinitiative.com/advisories/ZDI-21-175/