CVE-2018-6664

Application Protections Bypass vulnerability in Microsoft Windows in McAfee Data Loss Prevention (DLP) Endpoint before 10.0.500 and DLP Endpoint before 11.0.400 allows authenticated users to bypass the product block action via a command-line utility.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.8 MEDIUM
PHYSICAL
HIGH
LOW
CVSS:3.0/AV:P/AC:H/PR:L/UI:R/S:U/C:H/I:L/A:H
trellixCNA
5.8 MEDIUM
PHYSICAL
HIGH
LOW
CVSS:3.0/AV:P/AC:H/PR:L/UI:R/S:U/C:H/I:L/A:H
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 51%
VendorProductVersion
mcafeedata_loss_prevention_endpoint
𝑥
< 10.0.500
mcafeedata_loss_prevention_endpoint
𝑥
< 11.0.400
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.securityfocus.com/bid/104299
http://www.securitytracker.com/id/1040895
https://kc.mcafee.com/corporate/index?page=content&id=SB10237
https://kc.mcafee.com/corporate/index?page=content&id=SB10233
http://www.securityfocus.com/bid/104299
http://www.securitytracker.com/id/1040895
https://kc.mcafee.com/corporate/index?page=content&id=SB10237