Vulnerability Details CVE-2022-2330
Improper Restriction of XML External Entity Reference vulnerability in DLP Endpoint for Windows prior to 11.9.100 allows a remote attacker to cause the DLP Agent to access a local service that the attacker wouldn't usually have access to via a carefully constructed XML file, which the DLP Agent doesn't parse correctly.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 23.7%
CVSS Severity
CVSS v3 Score 6.5
References
Products affected by CVE-2022-2330
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:10.0
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:10.0.100
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:10.0.200
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:10.0.230
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:10.0.250
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:10.0.330
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:10.0.350
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:10.0.400
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:10.0.500
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:10.0.505
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:10.0.510
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:11.0
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:11.0.0
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:11.0.200
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:11.0.300
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:11.0.400
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:11.0.500
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:11.0.600
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:11.0.700
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:11.1.0
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:11.1.100
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:11.1.200
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:11.1.210.32
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:11.2.0.142
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:11.2.0.4
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:11.2.000
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:11.3.0
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:11.3.2.82
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:11.4.0
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:11.4.200
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:11.4.300
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:11.5.0
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:11.6.0
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:11.6.100.41
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:11.6.600
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:11.9.0
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:9.3.0
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:9.3.1
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:9.3.100
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:9.3.150
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:9.3.2
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:9.3.200
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:9.3.3
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:9.3.300
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:9.3.4
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:9.3.400
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:9.3.5
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:9.3.500
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:9.3.6
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:9.3.600
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:9.3.633.3
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:9.4.0
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:9.4.02
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:9.4.100
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:9.4.103
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:9.4.2
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:9.4.200
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:9.4.241
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:9.4.241.32
-
cpe:2.3:a:mcafee:data_loss_prevention_endpoint:9.4.301
-
cpe:2.3:o:microsoft:windows:-