CVE-2016-8012

CWE-2644 documents4 sources
Severity
7.8HIGH
EPSS
0.0%
top 86.81%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Mcafee Data Loss Prevention EndpointIntel Data Loss Prevention Endpoint (dlpe)
Timeline
PublishedMar 14
Latest updateMay 14

Description

Access control vulnerability in Intel Security Data Loss Prevention Endpoint (DLPe) 9.4.200 and 9.3.600 allows authenticated users with Read-Write-Execute permissions to inject hook DLLs into other processes via pages in the target process memory get.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages2 packages

CVEListV5intel/data_loss_prevention_endpoint_(dlpe)9.4.200 and 9.3.600
NVDmcafee/data_loss_prevention_endpoint9.3.09.3.600+1

🔴Vulnerability Details

3
GHSA
GHSA-8p8m-62w6-3xj8: Access control vulnerability in Intel Security Data Loss Prevention Endpoint (DLPe) 92022-05-14
OSV
zookeeper vulnerabilities2021-03-15
CVEList
CVE-2016-8012: Access control vulnerability in Intel Security Data Loss Prevention Endpoint (DLPe) 92017-03-14
CVE-2016-8012 (HIGH CVSS 7.8) | Access control vulnerability in Int | cvebase.io