PT-2019-4246 · Mcafee · Mcafee Data Loss Prevention

Published

2019-11-12

Updated

2020-08-24

CVE-2019-3640

CVSS v3.1

6.5

Medium

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions McAfee Data Loss Prevention versions prior to 11.4.0

Description The issue is related to the unprotected transport of credentials in the ePO extension, allowing remote attackers with network access to collect login details to the LDAP server. This is due to the ePO extension not using a secure connection when testing LDAP connectivity. The vulnerability can be exploited by a remote attacker to gain unauthorized access to protected information.

Recommendations For McAfee Data Loss Prevention versions prior to 11.4.0, update to version 11.4.0 or later to resolve the issue. As a temporary workaround, consider disabling the ePO extension until a patch is available. Restrict access to the LDAP server to minimize the risk of exploitation. Avoid using the ePO extension for testing LDAP connectivity until the issue is resolved.

Fix

Insufficiently Protected Credentials

Cleartext Transmission of Sensitive Information

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-522CWE-319

Related Identifiers

BDU:2019-04847

CVE-2019-3640

Affected Products

Mcafee Data Loss Prevention

PT-2019-4246 · Mcafee · Mcafee Data Loss Prevention

CVE-2019-3640

Weakness Enumeration

Related Identifiers

Affected Products

References · 5