CVE-2021-23873

Name of the Vulnerable Software and Affected Versions: McAfee Total Protection versions prior to 16.0.30

Description: The issue allows a local user to gain elevated privileges and perform arbitrary file deletion as the SYSTEM user, potentially causing Denial of Service. This is achieved via manipulating Junction link, after enumerating certain files, at a specific time.

Recommendations: For versions prior to 16.0.30, update to version 16.0.30 or later to resolve the issue. As a temporary workaround, consider restricting access to the Junction link manipulation functionality to minimize the risk of exploitation.