Vulnerability at McAfee facilitated cyber attacks

On August 19, 2022By Garmin Philip

Virus protection McAfee Security Scan Plus

Vulnerability in virus protection: A vulnerability in McAfee Security Scan Plus made it easier for attackers to access unauthorized rights. Fortunately, the error can already be fixed.

News

4th place: McAfee Total Protection — The vulnerability in McAfee’s Security Scan Plus can already be fixed.

Anyone who relies on a virus scanner is actually hoping for better protection against the dangers of the Internet. At the same time, software of this type can itself be a gateway for cyber attacks. For example, McAfee’s Security Scan Plus.

Like the company in a security warning reports, attackers were able to obtain unauthorized privileges via a vulnerability in the virus scanner’s rights management and thus secure access to the installation device or other connected devices. This is commonly referred to as a LOLBin attack (LOL = “Living off the Land”).

The security researcher Nasreddine Bencherchali from Nextron Systems discovered the vulnerability.

All versions prior to 4.1.262.1 are affected by the vulnerability, which runs under the designation CVE-2022-37025. The risk of the vulnerability is classified as “high” by the company.

To fix the rights management error, McAfee recommends updating Security Scan Plus to the latest version. The update usually takes place automatically when a new version is released. For those who want to be on the safe side: A manual installation of the update can be done via the official McAfee website be made. The company also offers an instruction with which the installation proceeds without any problems.