CVE-2023-4814

all versions

A Privilege escalation vulnerability exists in Trellix Windows DLP endpoint for windows which can be abused to delete any file/fol

7.1HIGH

CVE-2023-0400

>= 11.9.0 and < 11.10.0

The protection bypass vulnerability in DLP for Windows 11.9.x is addressed in version 11.10.0. This allowed a local user to bypass

5.9MEDIUM

CVE-2022-1700

< 8.8.2

Improper Restriction of XML External Entity Reference ('XXE') vulnerability in the Policy Engine of Forcepoint Data Loss Preventio

7.5HIGH

CVE-2021-4088

>= 11.7.0 and < 11.7.101

SQL injection vulnerability in Data Loss Protection (DLP) ePO extension 11.8.x prior to 11.8.100, 11.7.x prior to 11.7.101, and 11

8.4HIGH

CVE-2021-31832

< 11.6.200

Improper Neutralization of Input in the ePO administrator extension for McAfee Data Loss Prevention (DLP) Endpoint for Windows pri

5.2MEDIUM

CVE-2020-6590

< 8.7.1

Forcepoint Web Security Content Gateway versions prior to 8.5.4 improperly process XML input, leading to information disclosure.

7.5HIGH

CVE-2020-7346

< 11.6.100

Privilege Escalation vulnerability in McAfee Data Loss Prevention (DLP) for Windows prior to 11.6.100 allows a local, low privileg

7.8HIGH

CVE-2020-7307

>= 11.3.0 and < 11.3.28

Unprotected Storage of Credentials vulnerability in McAfee Data Loss Prevention (DLP) for Mac prior to 11.5.2 allows local users t

5.2MEDIUM

CVE-2020-7306

>= 11.3.0 and < 11.3.31

Unprotected Storage of Credentials vulnerability in McAfee Data Loss Prevention (DLP) for Mac prior to 11.5.2 allows local users t

5.2MEDIUM

CVE-2020-7305

>= 11.3.0 and < 11.3.28

Privilege escalation vulnerability in McAfee Data Loss Prevention (DLP) ePO extension prior to 11.5.3 allows a low privileged remo

6.7MEDIUM

CVE-2020-7304

>= 11.3.0 and < 11.3.28

Cross site request forgery vulnerability in McAfee Data Loss Prevention (DLP) ePO extension prior to 11.5.3 allows authenticated r

7.6HIGH

CVE-2020-7303

>= 11.3.0 and < 11.3.28

Cross Site scripting vulnerability in McAfee Data Loss Prevention (DLP) ePO extension prior to 11.5.3 allows authenticated remote

4.1MEDIUM

CVE-2020-7302

>= 11.3.0 and < 11.3.28

Unrestricted Upload of File with Dangerous Type in McAfee Data Loss Prevention (DLP) ePO extension prior to 11.5.3 allows authenti

5.4MEDIUM

CVE-2020-7301

>= 11.3.0 and < 11.3.28

Cross Site scripting vulnerability in McAfee Data Loss Prevention (DLP) ePO extension prior to 11.5.3 allows authenticated attacke

4.1MEDIUM

CVE-2020-7300

>= 11.3.0 and < 11.3.28

Improper Authorization vulnerability in McAfee Data Loss Prevention (DLP) ePO extension prior to 11.5.3 allows authenticated remot

4.6MEDIUM

CVE-2019-3640

>= 11.0.0 and <= 11.4.0

Unprotected Transport of Credentials in ePO extension in McAfee Data Loss Prevention 11.x prior to 11.4.0 allows remote attackers

4.8MEDIUM

CVE-2019-9701

all versions

DLP 15.5 MP1 and all prior versions may be susceptible to a cross-site scripting (XSS) vulnerability, a type of issue that can ena

4.8MEDIUM

CVE-2015-1485

<= 12.5.1

Cross-site request forgery (CSRF) vulnerability in the administration console in the Enforce Server in Symantec Data Loss Preventi

CVE-2014-9230

<= 12.5.1

Cross-site scripting (XSS) vulnerability in the administration console in the Enforce Server in Symantec Data Loss Prevention (DLP

CVE-2011-0548

<= 10.5.2

Buffer overflow in the Lotus Freelance Graphics PRZ file viewer in Autonomy KeyView, as used in Symantec Mail Security (SMS) 6.x t