CVE-2015-1305

medium

Trellix

CVSS v3 Base Score

6.9

AV:L/AC:M/Au:N/C:C/I:C/A:C

EPSS Score

0.5%

Exploitation probability in 30 days

Top 34% most likely to be exploited

Attack Characteristics

Attack Vector

Local

Attack Complexity

Confidentiality

Integrity

Availability

Published: February 6, 2015 (4115 days ago)

Last Modified: May 6, 2026

Vendor: Trellix

Source: NVD

Description

McAfee Data Loss Prevention Endpoint (DLPe) before 9.3.400 allows local users to write to arbitrary memory locations, and consequently gain privileges, via a crafted (1) 0x00224014 or (2) 0x0022c018 IOCTL call.

CWE

CWE-264

Affected Products

mcafee data loss prevention endpoint

References

🔗 packetstormsecurity.com 🔗 www.exploit-db.com 🔗 www.greyhathacker.net 🔗 www.osvdb.org 🔗 exchange.xforce.ibmcloud.com

CVE-2015-1305

Vulnerability Report

Description

CWE

Affected Products

References