CVE-2018-6686
MEDIUMMcAfee Drive Encryption >= 7.1.0 - Authentication Bypass via TPM Autoboot
Title source: llmDescription
Authentication Bypass vulnerability in TPM autoboot in McAfee Drive Encryption (MDE) 7.1.0 and above allows physically proximate attackers to bypass local security protection via specific set of circumstances.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
https://kc.mcafee.com/corporate/index?page=content&id=SB10242
Scores
CVSS v3
6.6
EPSS
0.0003
EPSS Percentile
8.1%
Attack Vector
PHYSICAL
CVSS:3.1/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-287
Status
published
Products (1)
mcafee/drive_encryption
7.1.0
Published
Jul 27, 2018
Tracked Since
Feb 18, 2026