cbcvebase.

Mcafee Total Protection vulnerabilities

25 known vulnerabilities affecting mcafee/total_protection.

Total CVEs
25
CISA KEV
1
actively exploited
Public exploits
0
Exploited in wild
1
Severity breakdown
HIGH14MEDIUM11

Vulnerabilities

Page 2 of 2
CVE-2019-3587P4MEDIUMCVSS 6.5fixed in 16.0.18≥ All, < 16.0.R182019-01-23
CVE-2019-3587 [MEDIUM] CWE-426 CVE-2019-3587: DLL Search Order Hijacking vulnerability in Microsoft Windows client in McAfee Total Protection (MTP DLL Search Order Hijacking vulnerability in Microsoft Windows client in McAfee Total Protection (MTP) Prior to 16.0.18 allows local users to execute arbitrary code via execution from a compromised folder.
nvd
CVE-2023-24577P4MEDIUMCVSS 5.5fixed in 16.0.502023-03-13
CVE-2023-24577 [MEDIUM] CWE-59 CVE-2023-24577: McAfee Total Protection prior to 16.0.50 allows attackers to elevate user privileges due to Improper McAfee Total Protection prior to 16.0.50 allows attackers to elevate user privileges due to Improper Link Resolution via registry keys. This could enable a user with lower privileges to execute unauthorized tasks.
nvd
CVE-2020-7310P4MEDIUMCVSS 6.9fixed in 4.0.161.12020-08-21
CVE-2020-7310 [MEDIUM] CWE-269 CVE-2020-7310: Privilege Escalation vulnerability in the installer in McAfee McAfee Total Protection (MTP) trial pr Privilege Escalation vulnerability in the installer in McAfee McAfee Total Protection (MTP) trial prior to 4.0.161.1 allows local users to change files that are part of write protection rules via manipulating symbolic links to redirect a McAfee file operations to an unintended file.
nvd
CVE-2023-24578P4MEDIUMCVSS 5.5fixed in 16.0.492023-03-13
CVE-2023-24578 [MEDIUM] CWE-427 CVE-2023-24578: McAfee Total Protection prior to 16.0.49 allows attackers to elevate user privileges due to DLL side McAfee Total Protection prior to 16.0.49 allows attackers to elevate user privileges due to DLL sideloading. This could enable a user with lower privileges to execute unauthorized tasks.
nvd
CVE-2023-24579P4MEDIUMCVSS 5.5fixed in 16.0.512023-03-13
CVE-2023-24579 [MEDIUM] CWE-20 CVE-2023-24579: McAfee Total Protection prior to 16.0.51 allows attackers to trick a victim into uninstalling the ap McAfee Total Protection prior to 16.0.51 allows attackers to trick a victim into uninstalling the application via the command prompt.
nvd
Mcafee Total Protection vulnerabilities | cvebase