Authentication bypass in McAfee Data Loss Prevention Endpoint - CVE-2018-6689
Published: October 15, 2018
Vulnerability identifier: #VU15365
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:P/U:Clear
CVE-ID: CVE-2018-6689
CWE-ID: CWE-592
Exploitation vector: Local access
Exploit availability:
No public exploit available
Vendor: McAfee
Affected software:
McAfee Data Loss Prevention Endpoint
McAfee Data Loss Prevention Endpoint
Detailed vulnerability description
The vulnerability allows a physical attacker to bypass authentication on the target system.
The weakness exists due to unspecified flaw. A physical attacker can access a user's session on a locked Windows machine if certain DLP Endpoint configurations are made by the DLP Endpoint administrator, include hyperlinks in user notification dialogs and bypass authentication to perform specific actions on a protected machine.
The weakness exists due to unspecified flaw. A physical attacker can access a user's session on a locked Windows machine if certain DLP Endpoint configurations are made by the DLP Endpoint administrator, include hyperlinks in user notification dialogs and bypass authentication to perform specific actions on a protected machine.
How to mitigate CVE-2018-6689
The vulnerability has been fixed in the versions 10.0.510, 11.0.600.