Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mcafee data loss prevention vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2014-8533
McAfee Network Data Loss Prevention (NDLP) prior to 9.3 allows remote malicious users to execute arbitrary code via vectors related to ICMP redirection.
Mcafee Network Data Loss Prevention 9.2.1
Mcafee Network Data Loss Prevention 8.6
Mcafee Network Data Loss Prevention
Mcafee Network Data Loss Prevention 9.2.0
7.5
CVSSv2
CVE-2014-8522
The MySQL database in McAfee Network Data Loss Prevention (NDLP) prior to 9.3 does not require a password, which makes it easier for remote malicious users to obtain access.
Mcafee Network Data Loss Prevention
Mcafee Network Data Loss Prevention 9.2.0
Mcafee Network Data Loss Prevention 8.6
Mcafee Network Data Loss Prevention 9.2.1
7.5
CVSSv2
CVE-2014-8530
Unspecified vulnerability in McAfee Network Data Loss Prevention (NDLP) prior to 9.3 allows remote malicious users to obtain sensitive information, affect integrity, or cause a denial of service via unknown vectors, related to simultaneous logins.
Mcafee Network Data Loss Prevention
Mcafee Network Data Loss Prevention 9.2.1
Mcafee Network Data Loss Prevention 9.2.0
Mcafee Network Data Loss Prevention 8.6
7.2
CVSSv2
CVE-2021-23887
Privilege Escalation vulnerability in McAfee Data Loss Prevention (DLP) Endpoint for Windows before 11.6.100 allows a local, low privileged, malicious user to write to arbitrary controlled kernel addresses. This is achieved by launching applications, suspending them, modifying th...
Mcafee Data Loss Prevention Endpoint
6.9
CVSSv2
CVE-2015-1305
McAfee Data Loss Prevention Endpoint (DLPe) prior to 9.3.400 allows local users to write to arbitrary memory locations, and consequently gain privileges, via a crafted (1) 0x00224014 or (2) 0x0022c018 IOCTL call.
Mcafee Data Loss Prevention Endpoint
1 EDB exploit
6.8
CVSSv2
CVE-2015-2759
Multiple cross-site request forgery (CSRF) vulnerabilities in the ePO extension in McAfee Data Loss Prevention Endpoint (DLPe) prior to 9.3 Patch 4 Hotfix 16 (9.3.416.4) allow remote malicious users to hijack the authentication of users for requests that (1) obtain sensitive info...
Mcafee Data Loss Prevention Endpoint
6.8
CVSSv2
CVE-2014-8523
Cross-site request forgery (CSRF) vulnerability in McAfee Network Data Loss Prevention (NDLP) prior to 9.3 allows remote malicious users to hijack the authentication of unspecified victims via unknown vectors.
Mcafee Network Data Loss Prevention
Mcafee Network Data Loss Prevention 9.2.1
Mcafee Network Data Loss Prevention 9.2.0
Mcafee Network Data Loss Prevention 8.6
6.5
CVSSv2
CVE-2021-4088
SQL injection vulnerability in Data Loss Protection (DLP) ePO extension 11.8.x before 11.8.100, 11.7.x before 11.7.101, and 11.6.401 allows a remote authenticated malicious user to inject unfiltered SQL into the DLP part of the ePO database. This could lead to remote code executi...
Mcafee Data Loss Prevention
Mcafee Data Loss Prevention 11.6.401
6.5
CVSSv2
CVE-2021-31849
SQL injection vulnerability in McAfee Data Loss Prevention (DLP) ePO extension before 11.7.100 allows a remote attacker logged into ePO as an administrator to inject arbitrary SQL into the ePO database through the user management section of the DLP ePO extension.
Mcafee Data Loss Prevention Endpoint
6.5
CVSSv2
CVE-2018-6664
Application Protections Bypass vulnerability in Microsoft Windows in McAfee Data Loss Prevention (DLP) Endpoint prior to 10.0.500 and DLP Endpoint prior to 11.0.400 allows authenticated users to bypass the product block action via a command-line utility.
Mcafee Data Loss Prevention Endpoint
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »