CVE-2019-3654

Authentication Bypass vulnerability in the Microsoft Windows client in McAfee Client Proxy (MCP) prior to 3.0.0 allows local user to bypass scanning of web traffic and gain access to blocked sites for a short period of time via generating an authorization key on the client which should only be generated by the network administrator.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:a:mcafee:client_proxy:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

History

07 Nov 2023, 03:10

Type Values Removed Values Added
References (MISC) https://kc.mcafee.com/corporate/index?page=content&id=SB10305 - Vendor Advisory () https://kc.mcafee.com/corporate/index?page=content&id=SB10305 -

Information

Published : 2019-11-22 20:15

Updated : 2024-02-28 17:28


NVD link : CVE-2019-3654

Mitre link : CVE-2019-3654

CVE.ORG link : CVE-2019-3654


JSON object : View

Products Affected

mcafee

  • client_proxy

microsoft

  • windows
CWE
CWE-287

Improper Authentication