Privilege Escalation Vulnerability in TotalAV Antivirus Software
CVE-2019-18194

7.8HIGH

Key Information:

Vendor: Totalav
Status: Totalav 2020
Vendor: CVE Published:; 10 January 2020

What is CVE-2019-18194?

TotalAV Antivirus version 2020 4.14.31 contains a vulnerability in its quarantine functionality which can lead to privilege escalation. An attacker can exploit this flaw by utilizing an NTFS directory junction, allowing them to restore a malicious DLL file from the quarantine area to the system32 directory. This could enable unauthorized access or control over the affected system, posing a significant risk to users. Proper patching and security measures are recommended to mitigate this vulnerability.

References

https://bogner.sh/2017/11/avgater-getting-local-admin-by-...

x_refsource_MISC

https://www.youtube.com/watch?v=88qeaLq98Gc

x_refsource_MISC

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Jan 10, 2020
Vulnerability Reserved
Oct 18, 2019

JSON

Totalav

What is CVE-2019-18194?

References

CVSS V3.1

Timeline