CVE-2021-23887 HIGH

CVE-2021-23887: Privilege escalation in McAfee DLP Endpoint for Windows

Vendor Mcafee,Llc
Product McAfee Data Loss Prevention (DLP) Endpoint for Windows
Weakness CWE-269
Published April 15, 2021
Last update August 3, 2024

CVSS base score

7.8/10
Attack vector Local
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

Privilege Escalation vulnerability in McAfee Data Loss Prevention (DLP) Endpoint for Windows prior to 11.6.100 allows a local, low privileged, attacker to write to arbitrary controlled kernel addresses. This is achieved by launching applications, suspending them, modifying the memory and restarting them when they are monitored by McAfee DLP through the hdlphook driver.

Key dates

02Disclosure timeline

April 15, 2021 CVE published
August 3, 2024 Record updated