2019-01-03 08:04:21 -05:00
{
2019-03-17 23:51:13 +00:00
"CVE_data_meta" : {
2019-08-21 13:07:16 +05:30
"ASSIGNER" : "psirt@mcafee.com" ,
2019-03-17 23:51:13 +00:00
"ID" : "CVE-2019-3634" ,
2019-08-21 13:07:16 +05:30
"STATE" : "PUBLIC" ,
"TITLE" : "Buffer overflow in DLP Endpoint for Windows"
} ,
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "Data Loss Prevention (DLPe) for Windows" ,
"version" : {
"version_data" : [
{
"version_affected" : "<" ,
"version_name" : "11.x" ,
"version_value" : "11.3.2.8"
}
]
}
}
]
} ,
"vendor_name" : "McAfee, LLC"
}
]
}
2019-03-17 23:51:13 +00:00
} ,
"data_format" : "MITRE" ,
"data_type" : "CVE" ,
"data_version" : "4.0" ,
"description" : {
"description_data" : [
{
"lang" : "eng" ,
2019-08-21 13:07:16 +05:30
"value" : "Buffer overflow in McAfee Data Loss Prevention (DLPe) for Windows 11.x prior to 11.3.2.8 allows local user to cause the Windows operating system to \"blue screen\" via an encrypted message sent to DLPe which when decrypted results in DLPe reading unallocated memory."
}
]
} ,
"generator" : {
"engine" : "Vulnogram 0.0.7"
} ,
"impact" : {
"cvss" : {
"attackComplexity" : "HIGH" ,
"attackVector" : "LOCAL" ,
"availabilityImpact" : "HIGH" ,
"baseScore" : 4.4 ,
"baseSeverity" : "MEDIUM" ,
"confidentialityImpact" : "NONE" ,
"integrityImpact" : "NONE" ,
"privilegesRequired" : "LOW" ,
"scope" : "UNCHANGED" ,
"userInteraction" : "REQUIRED" ,
"vectorString" : "CVSS:3.0/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:H" ,
"version" : "3.0"
}
} ,
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng" ,
"value" : "Buffer Overflow"
}
]
}
]
} ,
"references" : {
"reference_data" : [
{
"name" : "https://kc.mcafee.com/corporate/index?page=content&id=SB10295" ,
"refsource" : "CONFIRM" ,
"url" : "https://kc.mcafee.com/corporate/index?page=content&id=SB10295"
2019-03-17 23:51:13 +00:00
}
]
2019-08-21 13:07:16 +05:30
} ,
"source" : {
"discovery" : "EXTERNAL"
2019-03-17 23:51:13 +00:00
}
2019-08-21 13:07:16 +05:30
}
