Vulnerability Description
Privilege Escalation vulnerability in McAfee Data Loss Prevention (DLP) Endpoint for Windows prior to 11.6.100 allows a local, low privileged, attacker to write to arbitrary controlled kernel addresses. This is achieved by launching applications, suspending them, modifying the memory and restarting them when they are monitored by McAfee DLP through the hdlphook driver.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Mcafee | Data Loss Prevention Endpoint | < 11.6.100.41 |
Related Weaknesses (CWE)
References
- https://kc.mcafee.com/corporate/index?page=content&id=SB10354Broken Link
- https://kc.mcafee.com/corporate/index?page=content&id=SB10357Broken Link
- https://kc.mcafee.com/corporate/index?page=content&id=SB10354Broken Link
- https://kc.mcafee.com/corporate/index?page=content&id=SB10357Broken Link
FAQ
What is CVE-2021-23887?
CVE-2021-23887 is a vulnerability with a CVSS score of 7.8 (HIGH). Privilege Escalation vulnerability in McAfee Data Loss Prevention (DLP) Endpoint for Windows prior to 11.6.100 allows a local, low privileged, attacker to write to arbitrary controlled kernel addresse...
How severe is CVE-2021-23887?
CVE-2021-23887 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-23887?
Check the references section above for vendor advisories and patch information. Affected products include: Mcafee Data Loss Prevention Endpoint.