Arbitrary File Deletion Local Privilege Escalation Vulnerability

More information

On December 9, 2022, a high vulnerability was announced in the Antivirus and EDR solutions products. 

WithSecure is aware of this vulnerability affecting our products.

During the investigation, we found that these is used in the following WithSecure™ products are affected:

  • All WithSecure endpoint protection products for Windows

This vulnerability allows for a local privilege escalation on affected WithSecure Windows endpoint products, where a local unprivileged user can delete arbitrary files in the system.


  • Fixed
  • Risk level

  • High
  • Action required

  • No User action is required. The required fix has been published through automatic update channel with ULCore and USS version /2023-01-16_01
  • Platforms

  • All supported platforms for the affected products
  • Date issued

  • 2023-01-19