Total Protection McAfee Total Protection

Do you want an email whenever new security vulnerabilities are reported in McAfee Total Protection?

By the Year

In 2021 there have been 3 vulnerabilities in McAfee Total Protection with an average score of 7.2 out of ten. Last year Total Protection had 6 security vulnerabilities published. If vulnerabilities keep coming in at the current rate, it appears that number of security vulnerabilities in Total Protection in 2021 could surpass last years number. Last year, the average CVE base score was greater by 0.50

Year Vulnerabilities Average Score
2021 3 7.23
2020 6 7.73
2019 2 6.60
2018 0 0.00

It may take a day or so for new Total Protection vulnerabilities to show up. Additionally vulnerabilities may be tagged under a different product or component name.

Latest McAfee Total Protection Security Vulnerabilities

Privilege Escalation vulnerability in McAfee Total Protection (MTP) prior to 16.0.30

CVE-2021-23873 6.1 - Medium - February 10, 2021

Privilege Escalation vulnerability in McAfee Total Protection (MTP) prior to 16.0.30 allows a local user to gain elevated privileges and perform arbitrary file deletion as the SYSTEM user potentially causing Denial of Service via manipulating Junction link, after enumerating certain files, at a specific time.

Improper Privilege Management

Arbitrary Process Execution vulnerability in McAfee Total Protection (MTP) prior to 16.0.30

CVE-2021-23874 7.8 - High - February 10, 2021

Arbitrary Process Execution vulnerability in McAfee Total Protection (MTP) prior to 16.0.30 allows a local user to gain elevated privileges and execute arbitrary code bypassing MTP self-defense.

Improper Privilege Management

Bypass Remote Procedure call in McAfee Total Protection (MTP) prior to 16.0.30

CVE-2021-23876 7.8 - High - February 10, 2021

Bypass Remote Procedure call in McAfee Total Protection (MTP) prior to 16.0.30 allows a local user to gain elevated privileges and perform arbitrary file modification as the SYSTEM user potentially causing Denial of Service via executing carefully constructed malware.

Improper Privilege Management

Privilege Escalation vulnerability in Microsoft Windows client McAfee Total Protection (MTP) prior to 16.0.29

CVE-2020-7335 7.8 - High - December 01, 2020

Privilege Escalation vulnerability in Microsoft Windows client McAfee Total Protection (MTP) prior to 16.0.29 allows local users to gain elevated privileges via careful manipulation of a folder by creating a junction link. This exploits a lack of protection through a timing issue and is only exploitable in a small time window.

Improper Privilege Management

Privilege Escalation vulnerability in McAfee Total Protection (MTP) trial prior to 4.0.176.1

CVE-2020-7330 8.8 - High - October 14, 2020

Privilege Escalation vulnerability in McAfee Total Protection (MTP) trial prior to 4.0.176.1 allows local users to schedule tasks which call malicious software to execute with elevated privileges via editing of environment variables

Improper Privilege Management

Unexpected behavior violation in McAfee Total Protection (MTP) prior to 16.0.R26

CVE-2020-7298 8.4 - High - August 05, 2020

Unexpected behavior violation in McAfee Total Protection (MTP) prior to 16.0.R26 allows local users to turn off real time scanning via a specially crafted object making a specific function call.

Improper Input Validation

Privilege Escalation vulnerability in McAfee Total Protection (MTP) prior to 16.0.R26

CVE-2020-7281 6.3 - Medium - July 03, 2020

Privilege Escalation vulnerability in McAfee Total Protection (MTP) prior to 16.0.R26 allows local users to delete files the user would otherwise not have access to via manipulating symbolic links to redirect a McAfee delete action to an unintended file. This is achieved through running a malicious script or program on the target machine.

Improper Privilege Management

Privilege Escalation vulnerability in McAfee Total Protection (MTP) before 16.0.R26

CVE-2020-7282 6.3 - Medium - July 03, 2020

Privilege Escalation vulnerability in McAfee Total Protection (MTP) before 16.0.R26 allows local users to delete files the user would otherwise not have access to via manipulating symbolic links to redirect a McAfee delete action to an unintended file. This is achieved through running a malicious script or program on the target machine.

insecure temporary file

Privilege Escalation vulnerability in McAfee Total Protection (MTP) before 16.0.R26

CVE-2020-7283 8.8 - High - July 03, 2020

Privilege Escalation vulnerability in McAfee Total Protection (MTP) before 16.0.R26 allows local users to create and edit files via symbolic link manipulation in a location they would otherwise not have access to. This is achieved through running a malicious script or program on the target machine.

Improper Privilege Management

A Privilege Escalation vulnerability in the Microsoft Windows client in McAfee Total Protection 16.0.R22 and earlier

CVE-2019-3648 6.7 - Medium - November 13, 2019

A Privilege Escalation vulnerability in the Microsoft Windows client in McAfee Total Protection 16.0.R22 and earlier allows administrators to execute arbitrary code via carefully placing malicious files in specific locations protected by administrator permission.

Untrusted Path

DLL Search Order Hijacking vulnerability in Microsoft Windows client in McAfee Total Protection (MTP) Free Antivirus Trial 16.0.R18 and earlier

CVE-2019-3646 6.5 - Medium - September 13, 2019

DLL Search Order Hijacking vulnerability in Microsoft Windows client in McAfee Total Protection (MTP) Free Antivirus Trial 16.0.R18 and earlier allows local users to execute arbitrary code via execution from a compromised folder placed by an attacker with administrator rights.

Untrusted Path

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for McAfee Total Protection or by McAfee? Click the Watch button to subscribe.

subscribe