Vulnerabilities > Mcafee > Total Protection > High

DATE CVE VULNERABILITY TITLE RISK
2020-06-10 CVE-2019-3617 Improper Privilege Management vulnerability in Mcafee Total Protection
Privilege escalation vulnerability in McAfee Total Protection (ToPS) for Mac OS prior to 4.6 allows local users to gain root privileges via incorrect protection of temporary files.
local
low complexity
mcafee CWE-269
8.2
2019-10-28 CVE-2019-3636 Cleartext Storage of Sensitive Information vulnerability in Mcafee Total Protection
A File Masquerade vulnerability in McAfee Total Protection (MTP) version 16.0.R21 and earlier in Windows client allowed an attacker to read the plaintext list of AV-Scan exclusion files from the Windows registry, and to possibly replace excluded files with potential malware without being detected.
local
low complexity
mcafee CWE-312
7.8
2019-01-28 CVE-2019-3593 Unspecified vulnerability in Mcafee Total Protection
Exploitation of Privilege/Trust vulnerability in Microsoft Windows client in McAfee Total Protection (MTP) Prior to 16.0.R18 allows local users to bypass product self-protection, tamper with policies and product files, and uninstall McAfee software without permission via specially crafted malware.
local
low complexity
mcafee
7.1
2009-04-30 CVE-2009-1348 Improper Input Validation vulnerability in Mcafee products
The AV engine before DAT 5600 in McAfee VirusScan, Total Protection, Internet Security, SecurityShield for Microsoft ISA Server, Security for Microsoft Sharepoint, Security for Email Servers, Email Gateway, and Active Virus Defense allows remote attackers to bypass virus detection via (1) an invalid Headflags field in a malformed RAR archive, (2) an invalid Packsize field in a malformed RAR archive, or (3) an invalid Filelength field in a malformed ZIP archive.
network
high complexity
mcafee CWE-20
7.6