CVE-2019-3634

MEDIUM

Mcafee Data Loss Prevention Endpoint < 11.3.2.82 - Memory Corruption

Title source: rule

Description

Buffer overflow in McAfee Data Loss Prevention (DLPe) for Windows 11.x prior to 11.3.2.8 allows local user to cause the Windows operating system to "blue screen" via an encrypted message sent to DLPe which when decrypted results in DLPe reading unallocated memory.

References (1)

Core 1

Core References

Vendor Advisory x_refsource_confirm

https://kc.mcafee.com/corporate/index?page=content&id=SB10295

Scores

CVSS v3 5.5

EPSS 0.0005

EPSS Percentile 14.0%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-119 CWE-125

Status published

Products (1)

mcafee/data_loss_prevention_endpoint 11.3.0 - 11.3.2.82

Published Aug 21, 2019

Tracked Since Feb 18, 2026