CVE-2022-43751
First published: Tue Nov 22 2022(Updated: )
McAfee Total Protection prior to version 16.0.49 contains an uncontrolled search path element vulnerability due to the use of a variable pointing to a subdirectory that may be controllable by an unprivileged user. This may have allowed the unprivileged user to execute arbitrary code with system privileges.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Mcafee Total Protection | <16.0.49 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2022-43751.
What is the severity of CVE-2022-43751?
The severity of CVE-2022-43751 is high (7.8).
What software is affected by CVE-2022-43751?
McAfee Total Protection prior to version 16.0.49 is affected by CVE-2022-43751.
How does CVE-2022-43751 impact the affected software?
CVE-2022-43751 allows an unprivileged user to execute arbitrary code with system privileges due to an uncontrolled search path element vulnerability.
Is there a fix available for CVE-2022-43751?
Yes, upgrading to McAfee Total Protection version 16.0.49 or later will fix CVE-2022-43751.
- collector/nvd-index
- agent/tags
- agent/event
- agent/references
- agent/severity
- agent/weakness
- agent/author
- agent/type
- agent/description
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- collector/mitre-cve
- source/MITRE
- vendor/mcafee
- canonical/mcafee total protection