cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-25134,https://securityvulnerability.io/vulnerability/CVE-2023-25134,Remote Code Execution Vulnerability in McAfee Total Protection,"The vulnerability allows an adversary with full administrative access to manipulate a specific Component Object Model (COM) entry within the Windows Registry of McAfee Total Protection. This manipulation can lead to the execution of a malicious payload, posing significant risks to system integrity and data security.",Mcafee,Total Protection,6.7,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2023-03-21T00:00:00.000Z,0
CVE-2023-24579,https://securityvulnerability.io/vulnerability/CVE-2023-24579,Uninstallation Vulnerability in McAfee Total Protection,"A vulnerability in McAfee Total Protection allows attackers to exploit the application by tricking users into uninstalling the program through the command prompt. This manipulation can compromise the security of users' systems, potentially leading to unauthorized access and exposing sensitive data. It is crucial for users to be aware of potential social engineering tactics that could exploit this flaw and to ensure their software is updated to the latest version to mitigate risks.",Mcafee,Total Protection,5.5,MEDIUM,0.0005699999746866524,false,,false,false,false,,,false,false,,2023-03-13T00:00:00.000Z,0
CVE-2023-24578,https://securityvulnerability.io/vulnerability/CVE-2023-24578,Privilege Elevation Vulnerability in McAfee Total Protection,"A vulnerability in McAfee Total Protection prior to version 16.0.49 allows for unauthorized privilege escalation via DLL sideloading. This issue permits an attacker to leverage a user account with lower privileges to execute unauthorized tasks, which could compromise system security and integrity. Immediate remediation is advised to prevent potential exploitation.",Mcafee,Total Protection,5.5,MEDIUM,0.0005499999970197678,false,,false,false,false,,,false,false,,2023-03-13T00:00:00.000Z,0
CVE-2023-24577,https://securityvulnerability.io/vulnerability/CVE-2023-24577,Privilege Escalation Vulnerability in McAfee Total Protection,"McAfee Total Protection versions below 16.0.50 are susceptible to a privilege escalation vulnerability caused by improper link resolution through registry keys. This flaw allows attackers to elevate their user privileges, potentially letting individuals with restricted access carry out unauthorized actions. Users of affected versions should prioritize updating their software to safeguard against such risks, ensuring the integrity and security of their systems.",Mcafee,Total Protection,5.5,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2023-03-13T00:00:00.000Z,0
CVE-2022-43751,https://securityvulnerability.io/vulnerability/CVE-2022-43751,Uncontrolled Search Path Element Vulnerability in McAfee Total Protection,"The vulnerability in McAfee Total Protection stems from an uncontrolled search path element, which allows an unprivileged user to manipulate a variable pointing to a subdirectory. This critical flaw can be exploited to execute arbitrary code with system privileges, posing significant risks to the integrity and security of the system.",Mcafee,Total Protection,7.8,HIGH,0.0007600000244565308,false,,false,false,false,,,false,false,,2022-11-23T00:15:00.000Z,0
CVE-2022-0280,https://securityvulnerability.io/vulnerability/CVE-2022-0280,McAfee Total Protection (MTP) - File Deletion vulnerability,A race condition vulnerability exists in the QuickClean feature of McAfee Total Protection for Windows prior to 16.0.43 that allows a local user to gain privilege elevation and perform an arbitrary file delete. This could lead to sensitive files being deleted and potentially cause denial of service. This attack exploits the way symlinks are created and how the product works with them.,McAfee,McAfee Total Protection for Windows,7,HIGH,0.0004299999854993075,false,,false,false,false,,,false,false,,2022-03-10T22:35:09.000Z,0
CVE-2021-23877,https://securityvulnerability.io/vulnerability/CVE-2021-23877,McAfee Total Protection (MTP) - Privilege Escalation vulnerability,Privilege escalation vulnerability in the Windows trial installer of McAfee Total Protection (MTP) prior to 16.0.34_x may allow a local user to run arbitrary code as the admin user by replacing a specific temporary file created during the installation of the trial version of MTP.,Mcafee,Mcafee Total Protection (mtp),6.7,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2021-10-26T21:40:08.000Z,0
CVE-2021-23872,https://securityvulnerability.io/vulnerability/CVE-2021-23872,"Privilege Escalation vulnerability in McAfee Total Protection (MTP) ",Privilege Escalation vulnerability in the File Lock component of McAfee Total Protection (MTP) prior to 16.0.32 allows a local user to gain elevated privileges by manipulating a symbolic link in the IOCTL interface.,"Mcafee,llc",Mcafee Total Protection (mtp),7.8,HIGH,0.0004199999966658652,false,,false,false,false,,,false,false,,2021-05-12T09:00:23.000Z,0
CVE-2021-23891,https://securityvulnerability.io/vulnerability/CVE-2021-23891,"Privilege Escalation vulnerability in McAfee Total Protection (MTP) ",Privilege Escalation vulnerability in McAfee Total Protection (MTP) prior to 16.0.32 allows a local user to gain elevated privileges by impersonating a client token which could lead to the bypassing of MTP self-defense.,"Mcafee,llc",Mcafee Total Protection (mtp),7.8,HIGH,0.0004199999966658652,false,,false,false,false,,,false,false,,2021-05-12T09:00:15.000Z,0
CVE-2021-23874,https://securityvulnerability.io/vulnerability/CVE-2021-23874,McAfee Total Protection (MTP) privilege escalation vulnerability,Arbitrary Process Execution vulnerability in McAfee Total Protection (MTP) prior to 16.0.30 allows a local user to gain elevated privileges and execute arbitrary code bypassing MTP self-defense.,"Mcafee,llc",Mcafee Total Protection (mtp),8.2,HIGH,0.0011399999493733048,true,2021-11-03T00:00:00.000Z,false,false,true,2021-11-03T00:00:00.000Z,,false,false,,2021-02-10T10:25:24.000Z,0
CVE-2021-23876,https://securityvulnerability.io/vulnerability/CVE-2021-23876,McAfee Total Protection (MTP) Bypass Remote Procedure call vulnerability,Bypass Remote Procedure call in McAfee Total Protection (MTP) prior to 16.0.30 allows a local user to gain elevated privileges and perform arbitrary file modification as the SYSTEM user potentially causing Denial of Service via executing carefully constructed malware.,"Mcafee,llc",Mcafee Total Protection (mtp),7.8,HIGH,0.0004199999966658652,false,,false,false,false,,,false,false,,2021-02-10T10:25:15.000Z,0
CVE-2021-23873,https://securityvulnerability.io/vulnerability/CVE-2021-23873,McAfee Total Protection (MTP) privilege escalation vulnerability,"Privilege Escalation vulnerability in McAfee Total Protection (MTP) prior to 16.0.30 allows a local user to gain elevated privileges and perform arbitrary file deletion as the SYSTEM user potentially causing Denial of Service via manipulating Junction link, after enumerating certain files, at a specific time.","Mcafee,llc",Mcafee Total Protection (mtp),7.8,HIGH,0.0008099999977275729,false,,false,false,false,,,false,false,,2021-02-10T10:20:15.000Z,0
CVE-2020-7335,https://securityvulnerability.io/vulnerability/CVE-2020-7335,"Privilege Escalation vulnerability in McAfee Total Protection (MTP) ",Privilege Escalation vulnerability in Microsoft Windows client McAfee Total Protection (MTP) prior to 16.0.29 allows local users to gain elevated privileges via careful manipulation of a folder by creating a junction link. This exploits a lack of protection through a timing issue and is only exploitable in a small time window.,"Mcafee,llc",Mcafee Total Protection (mtp),7.5,HIGH,0.0006500000017695129,false,,false,false,false,,,false,false,,2020-12-01T08:50:14.000Z,0
CVE-2020-7330,https://securityvulnerability.io/vulnerability/CVE-2020-7330,Privilege Escalation vulnerability in McAfee Total Protection (MTP) trial,Privilege Escalation vulnerability in McAfee Total Protection (MTP) trial prior to 4.0.176.1 allows local users to schedule tasks which call malicious software to execute with elevated privileges via editing of environment variables,"Mcafee,llc",Mcafee Total Protection (mtp) Trial,7.5,HIGH,0.0004199999966658652,false,,false,false,false,,,false,false,,2020-10-14T08:55:16.000Z,0
CVE-2020-7310,https://securityvulnerability.io/vulnerability/CVE-2020-7310,Privilege Escalation vulnerability in McAfee Total Protection (MTP) trial installer,Privilege Escalation vulnerability in the installer in McAfee McAfee Total Protection (MTP) trial prior to 4.0.161.1 allows local users to change files that are part of write protection rules via manipulating symbolic links to redirect a McAfee file operations to an unintended file.,"Mcafee,llc",Mcafee Total Protection (mtp) Trial,6.9,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2020-08-21T08:30:16.000Z,0
CVE-2020-7298,https://securityvulnerability.io/vulnerability/CVE-2020-7298,Total Protection (MTP) - Unexpected behavior violation,Unexpected behavior violation in McAfee Total Protection (MTP) prior to 16.0.R26 allows local users to turn off real time scanning via a specially crafted object making a specific function call.,Mcafee,Mcafee Total Protection (mtp),7.5,HIGH,0.0004199999966658652,false,,false,false,false,,,false,false,,2020-08-05T20:55:14.000Z,0
CVE-2020-7283,https://securityvulnerability.io/vulnerability/CVE-2020-7283,"Privilege Escalation vulnerability in McAfee Total Protection (MTP) ",Privilege Escalation vulnerability in McAfee Total Protection (MTP) before 16.0.R26 allows local users to create and edit files via symbolic link manipulation in a location they would otherwise not have access to. This is achieved through running a malicious script or program on the target machine.,"Mcafee,llc",Mcafee Total Protection (mtp),7.5,HIGH,0.0004199999966658652,false,,false,false,true,2020-04-07T11:17:27.000Z,true,false,false,,2020-07-03T13:30:17.000Z,0
CVE-2020-7281,https://securityvulnerability.io/vulnerability/CVE-2020-7281,"Privilege Escalation vulnerability in McAfee Total Protection (MTP) ",Privilege Escalation vulnerability in McAfee Total Protection (MTP) prior to 16.0.R26 allows local users to delete files the user would otherwise not have access to via manipulating symbolic links to redirect a McAfee delete action to an unintended file. This is achieved through running a malicious script or program on the target machine.,"Mcafee,llc",Mcafee Total Protection (mtp),7.5,HIGH,0.0004199999966658652,false,,false,false,false,,,false,false,,2020-07-03T13:25:21.000Z,0
CVE-2020-7282,https://securityvulnerability.io/vulnerability/CVE-2020-7282,"Privilege Escalation vulnerability in McAfee Total Protection (MTP) ",Privilege Escalation vulnerability in McAfee Total Protection (MTP) before 16.0.R26 allows local users to delete files the user would otherwise not have access to via manipulating symbolic links to redirect a McAfee delete action to an unintended file. This is achieved through running a malicious script or program on the target machine.,"Mcafee,llc",Mcafee Total Protection (mtp),7.5,HIGH,0.0004199999966658652,false,,false,false,false,,,false,false,,2020-07-03T13:25:14.000Z,0
CVE-2019-3617,https://securityvulnerability.io/vulnerability/CVE-2019-3617,Privilege escalation in ToPS for Mac,Privilege escalation vulnerability in McAfee Total Protection (ToPS) for Mac OS prior to 4.6 allows local users to gain root privileges via incorrect protection of temporary files.,"Mcafee, Llc",Total Protection (tops) For Mac Os,7.5,HIGH,0.0004199999966658652,false,,false,false,false,,,false,false,,2020-06-10T07:29:50.000Z,0
CVE-2019-3648,https://securityvulnerability.io/vulnerability/CVE-2019-3648,Implicit loading of DLLs,A Privilege Escalation vulnerability in the Microsoft Windows client in McAfee Total Protection 16.0.R22 and earlier allows administrators to execute arbitrary code via carefully placing malicious files in specific locations protected by administrator permission.,"Mcafee,llc",Mcafee Total Protection,6.1,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2019-11-13T08:55:53.000Z,0
CVE-2019-3636,https://securityvulnerability.io/vulnerability/CVE-2019-3636,File masquerade attack vulnerability in McAfee Total Protection,"A File Masquerade vulnerability in McAfee Total Protection (MTP) version 16.0.R21 and earlier in Windows client allowed an attacker to read the plaintext list of AV-Scan exclusion files from the Windows registry, and to possibly replace excluded files with potential malware without being detected.","Mcafee, Lcc",Mcafee Total Protection,7.5,HIGH,0.0004400000034365803,false,,false,false,false,,,false,false,,2019-10-28T14:23:25.000Z,0
CVE-2019-3646,https://securityvulnerability.io/vulnerability/CVE-2019-3646,McAfee Total Protection - Free Antivirus Trial: DLL Search Order Hijacking vulnerability,DLL Search Order Hijacking vulnerability in Microsoft Windows client in McAfee Total Protection (MTP) Free Antivirus Trial 16.0.R18 and earlier allows local users to execute arbitrary code via execution from a compromised folder placed by an attacker with administrator rights.,"Mcafee, Llc",Mcafee Total Protection - Free Antivirus Trial,6.9,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2019-09-13T13:05:30.000Z,0
CVE-2019-3593,https://securityvulnerability.io/vulnerability/CVE-2019-3593,Exploitation of Privilege/Trust vulnerability,"Exploitation of Privilege/Trust vulnerability in Microsoft Windows client in McAfee Total Protection (MTP) Prior to 16.0.R18 allows local users to bypass product self-protection, tamper with policies and product files, and uninstall McAfee software without permission via specially crafted malware.","Mcafee, Llc",Total Protection (mtp),7.5,HIGH,0.0004199999966658652,false,,false,false,false,,,false,false,,2019-01-28T18:00:00.000Z,0
CVE-2019-3587,https://securityvulnerability.io/vulnerability/CVE-2019-3587,DLL Search Order Hijacking vulnerability,DLL Search Order Hijacking vulnerability in Microsoft Windows client in McAfee Total Protection (MTP) Prior to 16.0.18 allows local users to execute arbitrary code via execution from a compromised folder.,Mcafee,Total Protection (mtp),7.2,HIGH,0.0004199999966658652,false,,false,false,false,,,false,false,,2019-01-23T15:00:00.000Z,0