McAfee Data Loss Prevention Endpoint és Data Loss Prevention ePO Extension sérülékenységek

Típus: Hírek
Publikálva: 25/07/2019
A javítást már tartalmazó verziók:
- DLP Endpoint for Windows 11.3 
- DLP Endpoint for Windows 11.1.200
- DLP Endpoint ePO extension 11.3 
- DLP Endpoint ePO extension 11.1.200

A sérülékenységek részletei:
- CVE-2019-3591 (CVSS:3.9; Severity: Low) - Improper neutralization of input during web page generation (Cross-Site Scripting) in ePO extension in McAfee Data Loss Prevention Endpoint (DLP Endpoint) for Windows 11.x prior to 11.3.0 allows unauthenticated remote user to trigger specially crafted JavaScript to render in the ePO UI via a carefully crafted upload to a remote website which is correctly blocked by DLP Endpoint Web Protection. This would then render as an XSS when the DLP Endpoint administrator viewed the event in the ePO UI.
- CVE-2019-3595 (CVSS:2.0; Severity: Low) - Improper neutralization of special elements used in a command (Command Injection) in ePO extension in McAfee Data Loss Prevention Endpoint (DLP Endpoint) 11.x prior to 11.3.0 allows an authenticated administrator to execute arbitrary code with their local machine privileges via a specially crafted DLP Endpoint policy, which is exported and opened on their machine. In our checks, the user must explicitly allow the code to execute.
- CVE-2019-3621 (CVSS:6.8; Severity: Medium) - Authentication protection bypass vulnerability in McAfee Data Loss Prevention Endpoint (DLP Endpoint) for Windows 11.x prior to 11.3.0 allows a physical local user to bypass the Windows lock screen via DLP Endpoint processes being killed just prior to the screen being locked or when the screen is locked. The attacker requires physical access to the machine.
- CVE-2019-3622 (CVSS:7.2; Severity: High) - Files or directories accessible to external parties in McAfee Data Loss Prevention Endpoint (DLP Endpoint) for Windows 11.x prior to 11.3.0 allow an authenticated user to redirect DLP Endpoint log files to arbitrary locations via incorrect access control applied to the DLP Endpoint log folder allowing privileged users to create symbolic links.


A teljes cikk elérhető az alábbi linkeken:

Kapcsolat

+36 1 371 2 370
mcafee.ecs.hu@arrow.com

 CL Social Media Icon - Facebook 40px CL Social Media Icon - Twitter 40px CL Social Media Icon - Blog 40px  YouTube_40  McAfee_SDS_badge