CVE-2019-3595

CVE-2019-3595 affects McAfee Data Loss Prevention (DLP) Endpoint, specifically the ePO extension in DLP 11.x before 11.3.0. The root cause is improper neutralization of special elements during command construction when a DLP policy is exported and opened on the local machine. An authenticated adm...

CVE-2019-3591

McAfee DLPe (Data Loss Prevention Endpoint) with the ePO extension for Windows has a stored XSS vulnerability (CVE-2019-3591) due to improper input neutralization during web page generation in the ePO UI. A remote, unauthenticated user can trigger JavaScript via a crafted upload to a remote websi...

CVE-2019-3622

CVE-2019-3622 affects McAfee Data Loss Prevention Endpoint (DLPe) for Windows 11.x before 11.3.0. An incorrect access control on the DLPe log folder lets an authenticated user create symbolic links to redirect DLPe log files to arbitrary locations, enabling log file redirection by privileged user...

CVE-2019-3621

CVE-2019-3621 affects McAfee Data Loss Prevention Endpoint (DLPe) for Windows 11.x prior to 11.3.0. The vulnerability is an authentication protection bypass where a physical local user can bypass the Windows lock screen by interfering with DLPe processes (killed just before or while the screen is...

CVE-2021-23886

McAfee Data Loss Prevention (DLP) Endpoint for Windows before version 11.6.100 is affected by a Denial of Service vulnerability (CVE-2021-23886). The issue arises from the hdlphook driver reading invalid memory, enabling a local, low-privileged attacker to cause a blue screen by suspending a proc...

CVE-2021-31844

CVE-2021-31844 affects McAfee Data Loss Prevention (DLP) Endpoint for Windows prior to 11.6.200. A buffer overflow allows a local attacker to execute arbitrary code with elevated privileges by placing crafted Ami Pro (.sam) files and triggering a DLP Endpoint scan; caused by a destination buffer ...

CVE-2015-2760

CVE-2015-2760 is an XSS vulnerability in the McAfee DLPe ePO extension prior to 9.3 Patch 4 Hotfix 16 (9.3.416.4). The issue allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors in the ePO extension of DLPe. Affected product/version: McAfee Data Loss Pr...

CVE-2021-31849

CVE-2021-31849 describes a SQL injection in the McAfee Data Loss Prevention (DLP) ePO extension (prior to 11.7.100). An administrator logged into ePO can inject arbitrary SQL into the ePO database via the DLP extension’s user management section. Affected product: McAfee DLP ePO extension before 1...

CVE-2015-2757

CVE-2015-2757 affects the McAfee Data Loss Prevention Endpoint (DLPe) ePO extension prior to 9.3 Patch 4 Hotfix 16 (9.3.416.4). The vulnerability allows remote authenticated users to trigger a denial of service (database lock or license corruption) via unspecified vectors. Affected: DLPe ePO exte...

CVE-2021-31848

CVE-2021-31848 is an XSS vulnerability in McAfee Data Loss Prevention (DLP) ePO extension prior to version 11.7.100. The issue allows an attacker to hijack an active DLP ePO administrator session by convincing a logged-in admin to click a crafted link in the case-management portion of the extensi...

CVE-2015-1618

The CVE-2015-1618 issue affects the McAfee Data Loss Prevention Endpoint (DLPe) ePO extension prior to 9.3.400. A remote, authenticated user can obtain sensitive password information via a specially crafted URL, due to insufficient access checks in the ePO extension. Impact is information disclos...

CVE-2015-2758

The CVE-2015-2758 entry affects the McAfee Data Loss Prevention Endpoint (DLPe) ePO extension prior to 9.3 Patch 4 Hotfix 16 (9.3.416.4). The vulnerability allows remote authenticated users to obtain sensitive information, modify the database, or cause other unspecified impact via a crafted URL. ...

CVE-2016-3984

CVE-2016-3984 affects McAfee VirusScan Console and multiple McAfee components (MAR, MA, DXL, DLPe, MDC, ENS, IPS, VSE) on Windows. Local administrators can bypass self-protection rules and disable the antivirus engine by modifying registry keys. Impact: partial to full antivirus disablement; CVSS...

CVE-2019-3633

CVE-2019-3633 concerns the McAfee Data Loss Prevention Endpoint (DLPe) for Windows 11.x prior to 11.3.2.8. A buffer overflow in DLPe allows a local user to trigger a Windows blue screen by sending a crafted message, bypassing internal checks and causing DLPe to read unallocated memory. Public det...

CVE-2015-1305

CVE-2015-1305 affects McAfee Data Loss Prevention Endpoint (DLPe) prior to 9.3.400. Local attackers can escalate privileges by crafting IOCTL calls (0x00224014 or 0x0022c018) to a kernel-mode driver, enabling arbitrary memory writes. Public exploit/poC references exist (e.g., Exploit-DB, PacketSt...

CVE-2017-3948

Summary: CVE-2017-3948 is a Cross Site Scripting (XSS) vulnerability in the IMG Tags of the ePO extension for McAfee Data Loss Prevention Endpoint (DLP Endpoint) 10.0.x. The underlying issue is an XSS in IMG Tags that allows an authenticated user to inject arbitrary web script or HTML via malicio...

CVE-2022-2330

CVE-2022-2330 affects McAfee DLP Endpoint for Windows (versions prior to 11.9.100 and 11.6.600). The issue is an improper restriction of XML External Entity references (XXE), allowing a remote attacker to cause the DLP Agent to access a local service the attacker wouldn’t normally access via a sp...

CVE-2021-23887

The CVE-2021-23887 entry concerns McAfee Data Loss Prevention (DLP) Endpoint for Windows prior to 11.6.100. The vulnerability allows a local, low-privileged attacker to write to arbitrary kernel addresses by abusing the hdlphook driver: an attacker launches applications, suspends them, tampers wi...

CVE-2015-1616

CVE-2015-1616 affects McAfee Data Loss Prevention Endpoint (DLPe) with the ePO extension prior to 9.3.400. The issue is a SQL injection vulnerability identified as being due to improper input sanitization, allowing remote authenticated ePO users to execute arbitrary SQL commands via unspecified v...

CVE-2019-3634

CVE-2019-3634 describes a local-buffer-overflow vulnerability in McAfee Data Loss Prevention Endpoint (DLPe) for Windows, prior to version 11.3.2.8. The issue allows a local user to trigger a Windows blue screen by sending an encrypted message to DLPe, which, when decrypted, reads unallocated mem...

CVE-2015-2759

CVE-2015-2759 is tied to multiple CSRF vulnerabilities in the McAfee DLPe ePO extension, affecting DLPe versions prior to 9.3 Patch 4 Hotfix 16 (9.3.416.4). The issue allows remote attackers to hijack user authentication to perform (1) information disclosure or (2) database modification via unspe...

CVE-2015-1617

CVE-2015-1617 concerns a cross-site scripting (XSS) vulnerability in the McAfee Data Loss Prevention Endpoint (DLPe) ePO extension . The issue affects versions earlier than 9.3.400 and allows a remote, authenticated user to inject arbitrary web script or HTML via unspecified vectors. The impact i...

CVE-2018-6664

CVE-2018-6664 affects McAfee Data Loss Prevention (DLP) Endpoint: the DLP Agent prior to 10.0.500 or 11.x prior to 11.0.400 allows an authenticated user to bypass the product block via a command-line utility. Impact is a master bypass of protection, with no details on exploitation in the wild pro...

CVE-2018-6689

CVE-2018-6689 corresponds to an Authentication Bypass in McAfee Data Loss Prevention Endpoint (DLPe). The vulnerability affects DLPe 10.0.x before 10.0.510 and 11.0.x before 11.0.600, enabling bypass of local security protections under specific conditions. Affected products/versions are confirmed...

CVE-2018-6683

Summary: CVE-2018-6683 affects McAfee Data Loss Prevention (DLP) for Windows. The vulnerability stems from an incorrectly configured access control security level that enables a local attacker to bypass DLP policy by editing a local policy file while offline. Affected versions are McAfee DLP for ...

CVE-2016-8012

CVE-2016-8012 affects Intel Security Data Loss Prevention Endpoint (DLPe) versions 9.4.200 and 9.3.600. The issue is an access-control vulnerability allowing authenticated users with Read-Write-Execute permissions to inject hook DLLs into other processes by manipulating pages in the target proces...