CVE-2019-3633

MEDIUM

McAfee Data Loss Prevention Endpoint 11.3.0-11.3.2.82 - Local Denial of Service via Crafted Message

Title source: llm

Description

Buffer overflow in McAfee Data Loss Prevention (DLPe) for Windows 11.x prior to 11.3.2.8 allows local user to cause the Windows operating system to "blue screen" via a carefully constructed message sent to DLPe which bypasses DLPe internal checks and results in DLPe reading unallocated memory.

References (1)

Core 1

Core References

Vendor Advisory x_refsource_confirm

https://kc.mcafee.com/corporate/index?page=content&id=SB10295

Scores

CVSS v3 5.5

EPSS 0.0005

EPSS Percentile 14.2%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-119

Status published

Products (1)

mcafee/data_loss_prevention_endpoint 11.3.0 - 11.3.2.82

Published Aug 21, 2019

Tracked Since Feb 18, 2026