CVE-2024-22014

EUVD-2024-19620
An issue discovered in 360 Total Security Antivirus through 11.0.0.1061 for Windows allows attackers to gain escalated privileges via Symbolic Link Follow to Arbitrary File Delete.
Symlink
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
8.8 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 60%
Affected Products (NVD)
VendorProductVersion
360totalsecurity360_total_security
𝑥
≤ 11.0.0.1061
𝑥
= Vulnerable software versions
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
VendorProductVersionSource
360totalsecurityantivirus
𝑥
≤ 11.0.0.1061
ADP
Common Weakness Enumeration
References
https://github.com/mansk1es/CVE_360TS
https://github.com/mansk1es/CVE_360TS