CVE-2019-3621
MEDIUMMcAfee Data Loss Prevention (DLPe) for Windows 11.x <11.3.0 - Privi...
Title source: llmDescription
Authentication protection bypass vulnerability in McAfee Data Loss Prevention (DLPe) for Windows 11.x prior to 11.3.0 allows physical local user to bypass the Windows lock screen via DLPe processes being killed just prior to the screen being locked or when the screen is locked. The attacker requires physical access to the machine.
References (2)
Core 2
Core References
Vendor Advisory x_refsource_confirm
https://kc.mcafee.com/corporate/index?page=content&id=SB10290
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/109370
Scores
CVSS v3
6.8
EPSS
0.0006
EPSS Percentile
19.0%
Attack Vector
PHYSICAL
CVSS:3.0/AV:P/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:H
Details
Status
published
Products (1)
mcafee/data_loss_prevention_endpoint
11.0 - 11.1.200
Published
Jul 25, 2019
Tracked Since
Feb 18, 2026