SB10233 - Data Loss Prevention (DLP) Endpoint before 10.0.500 and DLP Endpoint before 11.0.400 - Application Protections Bypass vulnerability
CVE-2018-6664

5.8MEDIUM

Key Information:

Vendor
Mcafee
Status
Data Loss Prevention (dlp) Endpoint
Vendor
CVE Published:
8 May 2018

Summary

Application Protections Bypass vulnerability in Microsoft Windows in McAfee Data Loss Prevention (DLP) Endpoint before 10.0.500 and DLP Endpoint before 11.0.400 allows authenticated users to bypass the product block action via a command-line utility.

Affected Version(s)

Data Loss Prevention (DLP) Endpoint 11 < 11.0.400

Data Loss Prevention (DLP) Endpoint x86 10 < 10.0.500

References

http://www.securityfocus.com/bid/104299
vdb-entryx_refsource_BID
http://www.securitytracker.com/id/1040895
vdb-entryx_refsource_SECTRACK
https://kc.mcafee.com/corporate/index?page=content&id=SB1...
x_refsource_CONFIRM

CVSS V3.1

Score:
5.8
Severity:
MEDIUM
Confidentiality:
High
Integrity:
Low
Availability:
High
Attack Vector:
Physical
Attack Complexity:
High
Privileges Required:
Low
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.