Authentication flaw

2019-07-2517:15:00

PRIOn knowledge base

www.prio-n.com

6.1 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

Authentication protection bypass vulnerability in McAfee Data Loss Prevention (DLPe) for Windows 11.x prior to 11.3.0 allows physical local user to bypass the Windows lock screen via DLPe processes being killed just prior to the screen being locked or when the screen is locked. The attacker requires physical access to the machine.

CPENameOperatorVersion
data_loss_prevention_endpointge11.0
data_loss_prevention_endpointlt11.1.200
data_loss_prevention_endpointge11.2.000
data_loss_prevention_endpointlt11.3.0

Name	Operator	Version
data_loss_prevention_endpoint	ge	11.0
data_loss_prevention_endpoint	lt	11.1.200
data_loss_prevention_endpoint	ge	11.2.000
data_loss_prevention_endpoint	lt	11.3.0