VYPR
Unrated severityNVD Advisory· Published Jul 24, 2019· Updated Aug 4, 2024

DLP Endpoint log file redirection to arbitrary locations

CVE-2019-3622

Description

Files or Directories Accessible to External Parties in McAfee Data Loss Prevention (DLPe) for Windows 11.x prior to 11.3.0 allows authenticated user to redirect DLPe log files to arbitrary locations via incorrect access control applied to the DLPe log folder allowing privileged users to create symbolic links.

Affected products

2
  • McAfee/DLPellm-create
    Range: <11.3.0
  • McAfee, LLC/Data Loss Prevention (DLPe) for Windowsv5
    Range: 11.x

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.