Vulnerability Details CVE-2019-3621
Authentication protection bypass vulnerability in McAfee Data Loss Prevention (DLPe) for Windows 11.x prior to 11.3.0 allows physical local user to bypass the Windows lock screen via DLPe processes being killed just prior to the screen being locked or when the screen is locked. The attacker requires physical access to the machine.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 20.0%
CVSS Severity
CVSS v3 Score 6.8
CVSS v2 Score 4.6
References
Products affected by CVE-2019-3621
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:11.0
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:11.0.0
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:11.0.200
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:11.0.300
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:11.0.400
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:11.0.500
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:11.0.600
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:11.0.700
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:11.1.0
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:11.1.100
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:11.2.0.142
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:11.2.0.4
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:11.2.000
-
cpe:2.3:o:microsoft:windows:-