CVE-2019-3640

Name of the Vulnerable Software and Affected Versions McAfee Data Loss Prevention versions prior to 11.4.0

Description The issue is related to the unprotected transport of credentials in the ePO extension, allowing remote attackers with network access to collect login details to the LDAP server. This is due to the ePO extension not using a secure connection when testing LDAP connectivity. The vulnerability can be exploited by a remote attacker to gain unauthorized access to protected information.

Recommendations For McAfee Data Loss Prevention versions prior to 11.4.0, update to version 11.4.0 or later to resolve the issue. As a temporary workaround, consider disabling the ePO extension until a patch is available. Restrict access to the LDAP server to minimize the risk of exploitation. Avoid using the ePO extension for testing LDAP connectivity until the issue is resolved.