6 matches found
CVE-2021-23886
McAfee Data Loss Prevention (DLP) Endpoint for Windows before version 11.6.100 is affected by a Denial of Service vulnerability (CVE-2021-23886). The issue arises from the hdlphook driver reading invalid memory, enabling a local, low-privileged attacker to cause a blue screen by suspending a proc...
CVE-2021-31844
CVE-2021-31844 affects McAfee Data Loss Prevention (DLP) Endpoint for Windows prior to 11.6.200. A buffer overflow allows a local attacker to execute arbitrary code with elevated privileges by placing crafted Ami Pro (.sam) files and triggering a DLP Endpoint scan; caused by a destination buffer ...
CVE-2022-2330
CVE-2022-2330 affects McAfee DLP Endpoint for Windows (versions prior to 11.9.100 and 11.6.600). The issue is an improper restriction of XML External Entity references (XXE), allowing a remote attacker to cause the DLP Agent to access a local service the attacker wouldn’t normally access via a sp...
CVE-2021-23887
The CVE-2021-23887 entry concerns McAfee Data Loss Prevention (DLP) Endpoint for Windows prior to 11.6.100. The vulnerability allows a local, low-privileged attacker to write to arbitrary kernel addresses by abusing the hdlphook driver: an attacker launches applications, suspends them, tampers wi...
CVE-2018-6664
CVE-2018-6664 affects McAfee Data Loss Prevention (DLP) Endpoint: the DLP Agent prior to 10.0.500 or 11.x prior to 11.0.400 allows an authenticated user to bypass the product block via a command-line utility. Impact is a master bypass of protection, with no details on exploitation in the wild pro...
CVE-2018-6683
Summary: CVE-2018-6683 affects McAfee Data Loss Prevention (DLP) for Windows. The vulnerability stems from an incorrectly configured access control security level that enables a local attacker to bypass DLP policy by editing a local policy file while offline. Affected versions are McAfee DLP for ...