SB10233 - Data Loss Prevention (DLP) Endpoint before 10.0.500 and DLP Endpoint before 11.0.400 - Application Protections Bypass vulnerability
CVE-2018-6664

5.8MEDIUM

Key Information:

Vendor: Mcafee
Status: Data Loss Prevention (dlp) Endpoint
Vendor: CVE Published:; 8 May 2018

What is CVE-2018-6664?

Application Protections Bypass vulnerability in Microsoft Windows in McAfee Data Loss Prevention (DLP) Endpoint before 10.0.500 and DLP Endpoint before 11.0.400 allows authenticated users to bypass the product block action via a command-line utility.

Affected Version(s)

Data Loss Prevention (DLP) Endpoint 11 < 11.0.400

Data Loss Prevention (DLP) Endpoint x86 10 < 10.0.500

References

http://www.securityfocus.com/bid/104299

vdb-entryx_refsource_BID

http://www.securitytracker.com/id/1040895

vdb-entryx_refsource_SECTRACK

https://kc.mcafee.com/corporate/index?page=content&id=SB1...

x_refsource_CONFIRM

CVSS V3.1

Score:

5.8

Severity:

MEDIUM

Confidentiality:

High

Integrity:

Low

Availability:

High

Attack Vector:

Physical

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 8, 2018
Vulnerability Reserved
Feb 6, 2018

Mcafee

What is CVE-2018-6664?

Affected Version(s)

References

CVSS V3.1

Timeline