CalvinBackup/CVEs-PoC
1
0
Fork 0
mirror of https://github.com/0xMarcio/cve.git synced 2026-02-12 18:42:46 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
main
CVEs-PoC/2021/CVE-2021-23887.md
0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09
2025-09-29 21:09:30 +02:00

19 lines
1.0 KiB
Markdown
Raw Permalink Blame History

### [CVE-2021-23887](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-23887)
![](https://img.shields.io/static/v1?label=Product&message=McAfee%20Data%20Loss%20Prevention%20(DLP)%20Endpoint%20for%20Windows&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=unspecified%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=CWE-269%3A%20Privilege%20escalation%20vulnerability%20%20&color=brightgreen)
### Description
Privilege Escalation vulnerability in McAfee Data Loss Prevention (DLP) Endpoint for Windows prior to 11.6.100 allows a local, low privileged, attacker to write to arbitrary controlled kernel addresses. This is achieved by launching applications, suspending them, modifying the memory and restarting them when they are monitored by McAfee DLP through the hdlphook driver.
### POC
#### Reference
- https://kc.mcafee.com/corporate/index?page=content&id=SB10354
- https://kc.mcafee.com/corporate/index?page=content&id=SB10357
#### Github
No PoCs found on GitHub currently.
Reference in New Issue View Git Blame Copy Permalink