cve/2019/CVE-2019-3654.md

### [CVE-2019-3654](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3654)
![](https://img.shields.io/static/v1?label=Product&message=Client%20Proxy%20(MCP)&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3C%203.0.0%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Authentication%20Bypass%20vulnerability&color=brighgreen)

### Description

Authentication Bypass vulnerability in the Microsoft Windows client in McAfee Client Proxy (MCP) prior to 3.0.0 allows local user to bypass scanning of web traffic and gain access to blocked sites for a short period of time via generating an authorization key on the client which should only be generated by the network administrator.

### POC

#### Reference
- https://kc.mcafee.com/corporate/index?page=content&id=SB10305

#### Github
No PoCs found on GitHub currently.
Update Sun May 26 14:27:04 CEST 2024 2024-05-26 14:27:05 +02:00			`### [CVE-2019-3654](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3654)`
			`![](https://img.shields.io/static/v1?label=Product&message=Client%20Proxy%20(MCP)&color=blue)`
			`![](https://img.shields.io/static/v1?label=Version&message=%3C%203.0.0%20&color=brighgreen)`
			`![](https://img.shields.io/static/v1?label=Vulnerability&message=Authentication%20Bypass%20vulnerability&color=brighgreen)`

			`### Description`

			`Authentication Bypass vulnerability in the Microsoft Windows client in McAfee Client Proxy (MCP) prior to 3.0.0 allows local user to bypass scanning of web traffic and gain access to blocked sites for a short period of time via generating an authorization key on the client which should only be generated by the network administrator.`

			`### POC`

			`#### Reference`
			`- https://kc.mcafee.com/corporate/index?page=content&id=SB10305`

			`#### Github`
			`No PoCs found on GitHub currently.`