CyberSec.Space Logo
Back to CVE Browser

CVE-2021-23874

Known Exploited (CISA KEV)HIGH
8.2
CVSS Severity Score
EPSS Score40.8410%
EPSS Percentile88.55th
PublishedFeb 10, 2021
Last ModifiedNov 3, 2025

Vulnerability Description

Arbitrary Process Execution vulnerability in McAfee Total Protection (MTP) prior to 16.0.30 allows a local user to gain elevated privileges and execute arbitrary code bypassing MTP self-defense.

Affected Platforms (CPE)

๐Ÿ“ฆ
Mcafee

Total Protection

< 16.0.30

References & Advisories

๐Ÿ”— http://service.mcafee.com/FAQDocument.aspx?&id=TS103114
๐Ÿ”— http://service.mcafee.com/FAQDocument.aspx?&id=TS103114
๐Ÿ”— https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-23874

Related Vulnerabilities

CVE-2015-87729.1

McPvDrv.sys 4.6.111.0 in McAfee File Lock 5.x in McAfee Total Protection allows local users to obtain sensitive information from k...

CVE-2021-238727.8

Privilege Escalation vulnerability in the File Lock component of McAfee Total Protection (MTP) prior to 16.0.32 allows a local use...

CVE-2021-238737.8

Privilege Escalation vulnerability in McAfee Total Protection (MTP) prior to 16.0.30 allows a local user to gain elevated privileg...

CVE-2021-238767.8

Bypass Remote Procedure call in McAfee Total Protection (MTP) prior to 16.0.30 allows a local user to gain elevated privileges and...