CVE-2019-3634
MEDIUMMcAfee Data Loss Prevention Endpoint 11.3.0-11.3.2.82 - Buffer Overflow via Encrypted Message Decryption
Title source: llmDescription
Buffer overflow in McAfee Data Loss Prevention (DLPe) for Windows 11.x prior to 11.3.2.8 allows local user to cause the Windows operating system to "blue screen" via an encrypted message sent to DLPe which when decrypted results in DLPe reading unallocated memory.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
https://kc.mcafee.com/corporate/index?page=content&id=SB10295
Scores
CVSS v3
5.5
EPSS
0.0025
EPSS Percentile
16.0%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-119
CWE-125
Status
published
Products (1)
mcafee/data_loss_prevention_endpoint
11.3.0 - 11.3.2.82
Published
Aug 21, 2019
Tracked Since
Feb 18, 2026