Design/Logic Flaw

2019-07-2416:15:00

PRIOn knowledge base

www.prio-n.com

7.4 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.8%

JSON

Files or Directories Accessible to External Parties in McAfee Data Loss Prevention (DLPe) for Windows 11.x prior to 11.3.0 allows authenticated user to redirect DLPe log files to arbitrary locations via incorrect access control applied to the DLPe log folder allowing privileged users to create symbolic links.

CPENameOperatorVersion
data_loss_prevention_endpointge11.0
data_loss_prevention_endpointlt11.1.200
data_loss_prevention_endpointge11.2.000
data_loss_prevention_endpointlt11.3.0

Name	Operator	Version
data_loss_prevention_endpoint	ge	11.0
data_loss_prevention_endpoint	lt	11.1.200
data_loss_prevention_endpoint	ge	11.2.000
data_loss_prevention_endpoint	lt	11.3.0