CVE-2019-18194

Name of the Vulnerable Software and Affected Versions TotalAV version 4.14.31

Description The issue concerns a quarantine flaw that allows privilege escalation. Exploitation involves using an NTFS directory junction to restore a malicious DLL from quarantine into the system32 folder.

Recommendations For version 4.14.31, consider restricting access to the quarantine feature until a patch is available to prevent potential exploitation. As a temporary workaround, monitor system32 folder activity closely for any malicious DLL restorations.