First published: Thu Mar 10 2022(Updated: )
A race condition vulnerability exists in the QuickClean feature of McAfee Total Protection for Windows prior to 16.0.43 that allows a local user to gain privilege elevation and perform an arbitrary file delete. This could lead to sensitive files being deleted and potentially cause denial of service. This attack exploits the way symlinks are created and how the product works with them.
Credit: psirt@mcafee.com trellixpsirt@trellix.com
Affected Software | Affected Version | How to fix |
---|---|---|
Mcafee Total Protection | <16.0.43 | |
Microsoft Windows | ||
Mcafee Total Protection | <16.0.43 | |
Microsoft Windows |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID is CVE-2022-0280.
The severity of CVE-2022-0280 is high, with a severity value of 6.3.
CVE-2022-0280 affects McAfee Total Protection for Windows prior to version 16.0.43.
CVE-2022-0280 allows a local user to gain privilege elevation and perform an arbitrary file delete, potentially leading to sensitive files being deleted and causing denial of service.
No, Microsoft Windows is not vulnerable to CVE-2022-0280.
Update McAfee Total Protection for Windows to version 16.0.43 or later to fix CVE-2022-0280.