CVE-2022-28877

Summary

This vulnerability allows local user to delete arbitrary file in the system and bypassing security protection which can be abused for local privilege escalation on affected F-Secure & WithSecure windows endpoint products. An attacker must have code execution rights on the victim machine prior to successful exploitation.

Affected Software

VendorProductVersion RangeStatus
F-Secure and WithSecureAll F-Secure and WithSecure Endpoint Protection Products for WindowsAll Versionaffected

Weaknesses

  • Local Privilege Escalation Vulnerability in F-Secure & WithSecure Windows Endpoint Products

ADP Enrichment

CVE Program Container

Additional References

References