CVE-2018-6686: Drive Encryption (MDE) - Authentication Bypass vulnerability
First published: Fri Jul 27 2018(Updated: )
Authentication Bypass vulnerability in TPM autoboot in McAfee Drive Encryption (MDE) 7.1.0 and above allows physically proximate attackers to bypass local security protection via specific set of circumstances.
Credit: psirt@mcafee.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| McAfee Drive Encryption | >=7.1.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the vulnerability ID for this authentication bypass vulnerability?
The vulnerability ID for this authentication bypass vulnerability is CVE-2018-6686.
What is the affected software for this vulnerability?
The affected software for this vulnerability is McAfee Drive Encryption (MDE) 7.1.0 and above.
How does this vulnerability impact security?
This vulnerability allows physically proximate attackers to bypass local security protection under specific circumstances.
What is the severity level of CVE-2018-6686?
The severity level of CVE-2018-6686 is high.
How can I fix this authentication bypass vulnerability in McAfee Drive Encryption?
Please refer to the official McAfee advisory at the provided reference link for instructions on how to fix this vulnerability.
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/title
- agent/weakness
- agent/severity
- agent/author
- agent/last-modified-date
- agent/references
- agent/tags
- agent/first-publish-date
- agent/description
- agent/event
- vendor/mcafee
- canonical/mcafee drive encryption
- version/mcafee drive encryption/7.1.0