Data Loss Prevention Security Vulnerabilities and Issues — Data Loss Prevention CVE List

Lucene search

McafeeData Loss Prevention

4 matches found

CVE•added 2019/11/14 12:15 a.m.•39 views

CVE-2019-3640

Unprotected Transport of Credentials in ePO extension in McAfee Data Loss Prevention 11.x prior to 11.4.0 allows remote attackers with access to the network to collect login details to the LDAP server via the ePO extension not using a secure connection when testing LDAP connectivity.

6.5CVSS5.7AI score0.00113EPSS

CVE•added 2020/08/13 3:15 a.m.•39 views

CVE-2020-7302

Unrestricted Upload of File with Dangerous Type in McAfee Data Loss Prevention (DLP) ePO extension prior to 11.5.3 allows authenticated attackers to upload malicious files to the DLP case management section via lack of sanity checking.

6.4CVSS6AI score0.00588EPSS

CVE•added 2020/08/12 10:15 p.m.•30 views

CVE-2020-7300

Improper Authorization vulnerability in McAfee Data Loss Prevention (DLP) ePO extension prior to 11.5.3 allows authenticated remote attackers to change the configuration when logged in with view only privileges via carefully constructed HTTP post messages.

6.3CVSS5.5AI score0.00127EPSS

CVE•added 2020/08/13 3:15 a.m.•29 views

CVE-2020-7305

Privilege escalation vulnerability in McAfee Data Loss Prevention (DLP) ePO extension prior to 11.5.3 allows a low privileged remote attacker to create new rule sets via incorrect validation of user credentials.

6.7CVSS6.7AI score0.00162EPSS