CVE-2024-22014
Published: 15 April 2024
Summary
CVE-2024-22014 is a high-severity UNIX Symbolic Link (Symlink) Following (CWE-61) vulnerability in 360Totalsecurity 360 Total Security. Its CVSS base score is 8.8 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Exploitation for Privilege Escalation (T1068); ranked in the top 39.2% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2024-19620
Vulnerability details
An issue discovered in 360 Total Security Antivirus through 11.0.0.1061 for Windows allows attackers to gain escalated privileges via Symbolic Link Follow to Arbitrary File Delete.
- CWE(s)
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
The vulnerability enables exploitation for privilege escalation (T1068) via symbolic link following by a privileged AV process, facilitating arbitrary elevated file deletion (T1070.004) which can impair security tools (T1562.001).
Affected Assets
Mitigating Controls
No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.