Overview
- Description
- A Privilege Escalation vulnerability in the Microsoft Windows client in McAfee Total Protection 16.0.R22 and earlier allows administrators to execute arbitrary code via carefully placing malicious files in specific locations protected by administrator permission.
- Source
- trellixpsirt@trellix.com
- NVD status
- Modified
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 6.7
- Impact score
- 5.9
- Exploitability score
- 0.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
- Severity
- MEDIUM
CVSS 2.0
- Type
- Primary
- Base score
- 7.2
- Impact score
- 10
- Exploitability score
- 3.9
- Vector string
- AV:L/AC:L/Au:N/C:C/I:C/A:C
Weaknesses
- nvd@nist.gov
- CWE-426
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:mcafee:anti-virus_plus:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "10E5C397-E68B-4511-85C0-B3252F5601AB",
"versionEndIncluding": "16.0.r22"
},
{
"criteria": "cpe:2.3:a:mcafee:internet_security:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0229CEC5-62A2-4A9D-B04A-1533F253CDCA",
"versionEndIncluding": "16.0.r22"
},
{
"criteria": "cpe:2.3:a:mcafee:total_protection:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F541EBA4-75A9-48C2-9E58-2AE1F90AEC23",
"versionEndIncluding": "16.0r22"
}
],
"operator": "OR"
}
]
}
]