CVE-2023-25134

Name of the Vulnerable Software and Affected Versions McAfee Total Protection versions prior to 16.0.50

Description The issue is related to insufficient access control to the registry, allowing an adversary with full administrative access to modify a McAfee specific Component Object Model (COM) in the Windows Registry. This modification can result in the loading of a malicious payload.

Recommendations For versions prior to 16.0.50, update to version 16.0.50 or later to resolve the issue. As a temporary workaround, consider restricting access to the Windows Registry to minimize the risk of exploitation.