Vulnerabilities > CVE-2019-18194 - Unspecified vulnerability in Totalav 2020 4.14.31
Attack vector
LOCAL Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE local
totalav
Summary
TotalAV 2020 4.14.31 has a quarantine flaw that allows privilege escalation. Exploitation uses an NTFS directory junction to restore a malicious DLL from quarantine into the system32 folder.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |