Vulnerabilites related to mcafee - advanced_threat_defense
cve-2017-4052
Vulnerability from cvelistv5
Published
2017-07-12 15:00
Modified
2024-09-16 16:18
Severity ?
EPSS score ?
Summary
Authentication Bypass vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote unauthenticated users / remote attackers to change or update any configuration settings, or gain administrator functionality via a crafted HTTP request parameter.
References
| ▼ | URL | Tags |
|---|---|---|
| https://kc.mcafee.com/corporate/index?page=content&id=SB10204 | x_refsource_CONFIRM | |
| http://www.securityfocus.com/bid/99557 | vdb-entry, x_refsource_BID |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| McAfee | Advanced Threat Defense (ATD) |
Version: 3.10 Version: 3.8 Version: 3.6 Version: 3.4 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-05T14:39:41.366Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10204", }, { name: "99557", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/99557", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "Advanced Threat Defense (ATD)", vendor: "McAfee", versions: [ { status: "affected", version: "3.10", }, { status: "affected", version: "3.8", }, { status: "affected", version: "3.6", }, { status: "affected", version: "3.4", }, ], }, ], datePublic: "2017-07-11T00:00:00", descriptions: [ { lang: "en", value: "Authentication Bypass vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote unauthenticated users / remote attackers to change or update any configuration settings, or gain administrator functionality via a crafted HTTP request parameter.", }, ], problemTypes: [ { descriptions: [ { description: "Authentication Bypass vulnerability", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2017-07-14T09:57:01", orgId: "6dda929c-bb53-4a77-a76d-48e79601a1ce", shortName: "intel", }, references: [ { tags: [ "x_refsource_CONFIRM", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10204", }, { name: "99557", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/99557", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "secure@intel.com", DATE_PUBLIC: "2017-07-11T00:00:00", ID: "CVE-2017-4052", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "Advanced Threat Defense (ATD)", version: { version_data: [ { version_value: "3.10", }, { version_value: "3.8", }, { version_value: "3.6", }, { version_value: "3.4", }, ], }, }, ], }, vendor_name: "McAfee", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Authentication Bypass vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote unauthenticated users / remote attackers to change or update any configuration settings, or gain administrator functionality via a crafted HTTP request parameter.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "Authentication Bypass vulnerability", }, ], }, ], }, references: { reference_data: [ { name: "https://kc.mcafee.com/corporate/index?page=content&id=SB10204", refsource: "CONFIRM", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10204", }, { name: "99557", refsource: "BID", url: "http://www.securityfocus.com/bid/99557", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "6dda929c-bb53-4a77-a76d-48e79601a1ce", assignerShortName: "intel", cveId: "CVE-2017-4052", datePublished: "2017-07-12T15:00:00Z", dateReserved: "2016-12-26T00:00:00", dateUpdated: "2024-09-16T16:18:28.863Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2015-8990
Vulnerability from cvelistv5
Published
2017-03-14 22:00
Modified
2024-08-06 08:36
Severity ?
EPSS score ?
Summary
Detection bypass vulnerability in Intel Security Advanced Threat Defense (ATD) 3.4.6 and earlier allows malware samples to bypass ATD detection via renaming the malware.
References
| ▼ | URL | Tags |
|---|---|---|
| https://kc.mcafee.com/corporate/index?page=content&id=SB10127 | x_refsource_CONFIRM |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Intel | Advanced Threat Defense (ATD) |
Version: 3.4.6 and earlier |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-06T08:36:30.936Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10127", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "Advanced Threat Defense (ATD)", vendor: "Intel", versions: [ { status: "affected", version: "3.4.6 and earlier", }, ], }, ], datePublic: "2015-08-07T00:00:00", descriptions: [ { lang: "en", value: "Detection bypass vulnerability in Intel Security Advanced Threat Defense (ATD) 3.4.6 and earlier allows malware samples to bypass ATD detection via renaming the malware.", }, ], problemTypes: [ { descriptions: [ { description: "Detection bypass vulnerability", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2017-03-14T21:57:01", orgId: "6dda929c-bb53-4a77-a76d-48e79601a1ce", shortName: "intel", }, references: [ { tags: [ "x_refsource_CONFIRM", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10127", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "secure@intel.com", ID: "CVE-2015-8990", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "Advanced Threat Defense (ATD)", version: { version_data: [ { version_value: "3.4.6 and earlier", }, ], }, }, ], }, vendor_name: "Intel", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Detection bypass vulnerability in Intel Security Advanced Threat Defense (ATD) 3.4.6 and earlier allows malware samples to bypass ATD detection via renaming the malware.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "Detection bypass vulnerability", }, ], }, ], }, references: { reference_data: [ { name: "https://kc.mcafee.com/corporate/index?page=content&id=SB10127", refsource: "CONFIRM", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10127", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "6dda929c-bb53-4a77-a76d-48e79601a1ce", assignerShortName: "intel", cveId: "CVE-2015-8990", datePublished: "2017-03-14T22:00:00", dateReserved: "2017-02-27T00:00:00", dateUpdated: "2024-08-06T08:36:30.936Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2019-3660
Vulnerability from cvelistv5
Published
2019-11-13 23:05
Modified
2024-08-04 19:12
Severity ?
EPSS score ?
Summary
Improper Neutralization of HTTP requests in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows remote authenticated attacker to execute commands on the server remotely via carefully constructed HTTP requests.
References
| ▼ | URL | Tags |
|---|---|---|
| https://kc.mcafee.com/corporate/index?page=content&id=SB10304 | x_refsource_MISC |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| McAfee | Advanced Threat Defense (ATD) |
Version: unspecified < 4.8 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-04T19:12:09.655Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_MISC", "x_transferred", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10304", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "Advanced Threat Defense (ATD)", vendor: "McAfee", versions: [ { lessThan: "4.8", status: "affected", version: "unspecified", versionType: "custom", }, ], }, ], descriptions: [ { lang: "en", value: "Improper Neutralization of HTTP requests in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows remote authenticated attacker to execute commands on the server remotely via carefully constructed HTTP requests.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.4, baseSeverity: "HIGH", confidentialityImpact: "LOW", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:H", version: "3.1", }, }, ], problemTypes: [ { descriptions: [ { description: "Improper Neutralization of HTTP requests", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2019-11-13T23:05:53", orgId: "01626437-bf8f-4d1c-912a-893b5eb04808", shortName: "trellix", }, references: [ { tags: [ "x_refsource_MISC", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10304", }, ], source: { advisory: "SB10304", discovery: "EXTERNAL", }, title: "Advanced Threat Defense (ATD) - Improper Neutralization of HTTP requests", x_generator: { engine: "Vulnogram 0.0.9", }, x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "psirt@mcafee.com", ID: "CVE-2019-3660", STATE: "PUBLIC", TITLE: "Advanced Threat Defense (ATD) - Improper Neutralization of HTTP requests", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "Advanced Threat Defense (ATD)", version: { version_data: [ { version_affected: "<", version_value: "4.8", }, ], }, }, ], }, vendor_name: "McAfee", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Improper Neutralization of HTTP requests in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows remote authenticated attacker to execute commands on the server remotely via carefully constructed HTTP requests.", }, ], }, generator: { engine: "Vulnogram 0.0.9", }, impact: { cvss: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.4, baseSeverity: "HIGH", confidentialityImpact: "LOW", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:H", version: "3.1", }, }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "Improper Neutralization of HTTP requests", }, ], }, ], }, references: { reference_data: [ { name: "https://kc.mcafee.com/corporate/index?page=content&id=SB10304", refsource: "MISC", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10304", }, ], }, source: { advisory: "SB10304", discovery: "EXTERNAL", }, }, }, }, cveMetadata: { assignerOrgId: "01626437-bf8f-4d1c-912a-893b5eb04808", assignerShortName: "trellix", cveId: "CVE-2019-3660", datePublished: "2019-11-13T23:05:53", dateReserved: "2019-01-03T00:00:00", dateUpdated: "2024-08-04T19:12:09.655Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2020-7254
Vulnerability from cvelistv5
Published
2020-03-12 11:00
Modified
2024-09-16 20:37
Severity ?
EPSS score ?
Summary
Privilege Escalation vulnerability in the command line interface in McAfee Advanced Threat Defense (ATD) 4.x prior to 4.8.2 allows local users to execute arbitrary code via improper access controls on the sudo command.
References
| ▼ | URL | Tags |
|---|---|---|
| https://kc.mcafee.com/corporate/index?page=content&id=SB10311 | x_refsource_CONFIRM |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| McAfee, LLC | McAfee Advanced Threat Defense (ATD) |
Version: 4.x < 4.8.2 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-04T09:25:48.952Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10311", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "McAfee Advanced Threat Defense (ATD)", vendor: "McAfee, LLC", versions: [ { lessThan: "4.8.2", status: "affected", version: "4.x", versionType: "custom", }, ], }, ], credits: [ { lang: "en", value: "McAfee credits Jerome Nokin from NCIA for responsibly reporting CVE-2020-7254", }, ], datePublic: "2020-03-10T00:00:00", descriptions: [ { lang: "en", value: "Privilege Escalation vulnerability in the command line interface in McAfee Advanced Threat Defense (ATD) 4.x prior to 4.8.2 allows local users to execute arbitrary code via improper access controls on the sudo command.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.7, baseSeverity: "HIGH", confidentialityImpact: "LOW", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:H", version: "3.1", }, }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-264", description: "CWE-264 Permissions, Privileges, and Access Controls", lang: "en", type: "CWE", }, ], }, { descriptions: [ { cweId: "CWE-269", description: "CWE-269 Improper Privilege Management", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2020-03-12T11:00:18", orgId: "01626437-bf8f-4d1c-912a-893b5eb04808", shortName: "trellix", }, references: [ { tags: [ "x_refsource_CONFIRM", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10311", }, ], source: { discovery: "EXTERNAL", }, title: "Privilege escalation in Advanced Threat Defense", x_generator: { engine: "Vulnogram 0.0.9", }, x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "psirt@mcafee.com", DATE_PUBLIC: "2020-03-10T00:00:00.000Z", ID: "CVE-2020-7254", STATE: "PUBLIC", TITLE: "Privilege escalation in Advanced Threat Defense", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "McAfee Advanced Threat Defense (ATD)", version: { version_data: [ { version_affected: "<", version_name: "4.x", version_value: "4.8.2", }, ], }, }, ], }, vendor_name: "McAfee, LLC", }, ], }, }, credit: [ { lang: "eng", value: "McAfee credits Jerome Nokin from NCIA for responsibly reporting CVE-2020-7254", }, ], data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Privilege Escalation vulnerability in the command line interface in McAfee Advanced Threat Defense (ATD) 4.x prior to 4.8.2 allows local users to execute arbitrary code via improper access controls on the sudo command.", }, ], }, generator: { engine: "Vulnogram 0.0.9", }, impact: { cvss: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.7, baseSeverity: "HIGH", confidentialityImpact: "LOW", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:H", version: "3.1", }, }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "CWE-264 Permissions, Privileges, and Access Controls", }, ], }, { description: [ { lang: "eng", value: "CWE-269 Improper Privilege Management", }, ], }, ], }, references: { reference_data: [ { name: "https://kc.mcafee.com/corporate/index?page=content&id=SB10311", refsource: "CONFIRM", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10311", }, ], }, source: { discovery: "EXTERNAL", }, }, }, }, cveMetadata: { assignerOrgId: "01626437-bf8f-4d1c-912a-893b5eb04808", assignerShortName: "trellix", cveId: "CVE-2020-7254", datePublished: "2020-03-12T11:00:18.459320Z", dateReserved: "2020-01-21T00:00:00", dateUpdated: "2024-09-16T20:37:10.544Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2023-0978
Vulnerability from cvelistv5
Published
2023-03-13 13:29
Modified
2025-02-27 19:15
Severity ?
EPSS score ?
Summary
A command injection vulnerability in Trellix Intelligent Sandbox CLI for version 5.2 and earlier, allows a local user to inject and execute arbitrary operating system commands using specially crafted strings. This vulnerability is due to insufficient validation of arguments that are passed to specific CLI command. The vulnerability allows the attack
References
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Trellix | Trellix Intelligent Sandbox |
Version: 5.0 < |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T05:32:46.183Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://kcm.trellix.com/corporate/index?page=content&id=SB10397", }, ], title: "CVE Program Container", }, { metrics: [ { other: { content: { id: "CVE-2023-0978", options: [ { Exploitation: "none", }, { Automatable: "no", }, { "Technical Impact": "total", }, ], role: "CISA Coordinator", timestamp: "2025-02-27T19:15:14.808671Z", version: "2.0.3", }, type: "ssvc", }, }, ], providerMetadata: { dateUpdated: "2025-02-27T19:15:59.531Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, ], cna: { affected: [ { defaultStatus: "unaffected", platforms: [ "Linux", "5.2", "5.0", ], product: "Trellix Intelligent Sandbox", vendor: "Trellix", versions: [ { lessThanOrEqual: " 5.2", status: "affected", version: " 5.0", versionType: "custom", }, ], }, ], credits: [ { lang: "en", type: "finder", user: "00000000-0000-4000-9000-000000000000", value: "Derrick Berg (Eastman Kodak Company)", }, ], descriptions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "\n\n<span style=\"background-color: rgb(255, 255, 255);\">A command injection vulnerability in Trellix Intelligent Sandbox CLI for version 5.2 and earlier, allows a local user to inject and execute arbitrary operating system commands using specially crafted strings. This vulnerability is due to insufficient validation of arguments that are passed to specific CLI command. The vulnerability allows the attack</span>\n\n", }, ], value: "\nA command injection vulnerability in Trellix Intelligent Sandbox CLI for version 5.2 and earlier, allows a local user to inject and execute arbitrary operating system commands using specially crafted strings. This vulnerability is due to insufficient validation of arguments that are passed to specific CLI command. The vulnerability allows the attack\n\n", }, ], impacts: [ { capecId: "CAPEC-248", descriptions: [ { lang: "en", value: "CAPEC-248 Command Injection", }, ], }, ], metrics: [ { cvssV3_1: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 6.4, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "HIGH", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, format: "CVSS", scenarios: [ { lang: "en", value: "GENERAL", }, ], }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-77", description: "CWE-77 Improper Neutralization of Special Elements used in a Command ('Command Injection')", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2023-04-03T15:34:38.217Z", orgId: "01626437-bf8f-4d1c-912a-893b5eb04808", shortName: "trellix", }, references: [ { url: "https://kcm.trellix.com/corporate/index?page=content&id=SB10397", }, ], solutions: [ { lang: "en", supportingMedia: [ { base64: false, type: "text/html", value: "\n\n<span style=\"background-color: rgb(255, 255, 255);\">To remediate this issue, customers running ATD/IS 5.2.0 or earlier must go to the </span><a target=\"_blank\" rel=\"nofollow\" href=\"https://www.trellix.com/en-us/downloads/my-products.html\">Product Downloads site</a><span style=\"background-color: rgb(255, 255, 255);\"> and download the applicable product update/hotfix file:</span>\n\n<br>", }, ], value: "\nTo remediate this issue, customers running ATD/IS 5.2.0 or earlier must go to the Product Downloads site https://www.trellix.com/en-us/downloads/my-products.html and download the applicable product update/hotfix file:\n\n\n", }, ], source: { discovery: "UNKNOWN", }, x_generator: { engine: "Vulnogram 0.1.0-dev", }, }, }, cveMetadata: { assignerOrgId: "01626437-bf8f-4d1c-912a-893b5eb04808", assignerShortName: "trellix", cveId: "CVE-2023-0978", datePublished: "2023-03-13T13:29:32.271Z", dateReserved: "2023-02-23T05:28:48.678Z", dateUpdated: "2025-02-27T19:15:59.531Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2017-3899
Vulnerability from cvelistv5
Published
2017-03-14 22:00
Modified
2024-08-05 14:39
Severity ?
EPSS score ?
Summary
SQL injection vulnerability in Intel Security Advanced Threat Defense (ATD) Linux 3.6.0 and earlier allows remote authenticated users to obtain product information via a crafted HTTP request parameter.
References
| ▼ | URL | Tags |
|---|---|---|
| http://www.securityfocus.com/bid/96929 | vdb-entry, x_refsource_BID | |
| https://kc.mcafee.com/corporate/index?page=content&id=SB10189 | x_refsource_CONFIRM |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Intel | Advanced Threat Defense (ATD) |
Version: Linux 3.6.0 and earlier |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-05T14:39:41.298Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "96929", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/96929", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10189", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "Advanced Threat Defense (ATD)", vendor: "Intel", versions: [ { status: "affected", version: "Linux 3.6.0 and earlier", }, ], }, ], datePublic: "2017-02-22T00:00:00", descriptions: [ { lang: "en", value: "SQL injection vulnerability in Intel Security Advanced Threat Defense (ATD) Linux 3.6.0 and earlier allows remote authenticated users to obtain product information via a crafted HTTP request parameter.", }, ], problemTypes: [ { descriptions: [ { description: "SQL injection vulnerability", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2017-03-17T09:57:01", orgId: "6dda929c-bb53-4a77-a76d-48e79601a1ce", shortName: "intel", }, references: [ { name: "96929", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/96929", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10189", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "secure@intel.com", ID: "CVE-2017-3899", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "Advanced Threat Defense (ATD)", version: { version_data: [ { version_value: "Linux 3.6.0 and earlier", }, ], }, }, ], }, vendor_name: "Intel", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "SQL injection vulnerability in Intel Security Advanced Threat Defense (ATD) Linux 3.6.0 and earlier allows remote authenticated users to obtain product information via a crafted HTTP request parameter.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "SQL injection vulnerability", }, ], }, ], }, references: { reference_data: [ { name: "96929", refsource: "BID", url: "http://www.securityfocus.com/bid/96929", }, { name: "https://kc.mcafee.com/corporate/index?page=content&id=SB10189", refsource: "CONFIRM", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10189", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "6dda929c-bb53-4a77-a76d-48e79601a1ce", assignerShortName: "intel", cveId: "CVE-2017-3899", datePublished: "2017-03-14T22:00:00", dateReserved: "2016-12-26T00:00:00", dateUpdated: "2024-08-05T14:39:41.298Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2015-3028
Vulnerability from cvelistv5
Published
2015-04-08 18:00
Modified
2024-09-17 03:38
Severity ?
EPSS score ?
Summary
McAfee Advanced Threat Defense (MATD) before 3.4.4.63 allows remote authenticated users to bypass intended restrictions and change or update configuration settings via crafted parameters.
References
| ▼ | URL | Tags |
|---|---|---|
| https://kc.mcafee.com/corporate/index?page=content&id=SB10112 | x_refsource_CONFIRM |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-06T05:32:21.391Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10112", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], descriptions: [ { lang: "en", value: "McAfee Advanced Threat Defense (MATD) before 3.4.4.63 allows remote authenticated users to bypass intended restrictions and change or update configuration settings via crafted parameters.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2015-04-08T18:00:00Z", orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", shortName: "mitre", }, references: [ { tags: [ "x_refsource_CONFIRM", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10112", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2015-3028", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "McAfee Advanced Threat Defense (MATD) before 3.4.4.63 allows remote authenticated users to bypass intended restrictions and change or update configuration settings via crafted parameters.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "https://kc.mcafee.com/corporate/index?page=content&id=SB10112", refsource: "CONFIRM", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10112", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", assignerShortName: "mitre", cveId: "CVE-2015-3028", datePublished: "2015-04-08T18:00:00Z", dateReserved: "2015-04-08T00:00:00Z", dateUpdated: "2024-09-17T03:38:43.145Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2016-3983
Vulnerability from cvelistv5
Published
2016-04-08 15:00
Modified
2024-09-16 17:22
Severity ?
EPSS score ?
Summary
McAfee Advanced Threat Defense (ATD) before 3.4.8.178 might allow remote attackers to bypass malware detection by leveraging information about the parent process.
References
| ▼ | URL | Tags |
|---|---|---|
| https://kc.mcafee.com/corporate/index?page=content&id=SB10149 | x_refsource_CONFIRM |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-06T00:10:31.951Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10149", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], descriptions: [ { lang: "en", value: "McAfee Advanced Threat Defense (ATD) before 3.4.8.178 might allow remote attackers to bypass malware detection by leveraging information about the parent process.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2016-04-08T15:00:00Z", orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", shortName: "mitre", }, references: [ { tags: [ "x_refsource_CONFIRM", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10149", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2016-3983", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "McAfee Advanced Threat Defense (ATD) before 3.4.8.178 might allow remote attackers to bypass malware detection by leveraging information about the parent process.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "https://kc.mcafee.com/corporate/index?page=content&id=SB10149", refsource: "CONFIRM", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10149", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", assignerShortName: "mitre", cveId: "CVE-2016-3983", datePublished: "2016-04-08T15:00:00Z", dateReserved: "2016-04-08T00:00:00Z", dateUpdated: "2024-09-16T17:22:45.012Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2015-3030
Vulnerability from cvelistv5
Published
2015-04-08 18:00
Modified
2024-09-16 20:01
Severity ?
EPSS score ?
Summary
The web interface in McAfee Advanced Threat Defense (MATD) before 3.4.4.63 allows remote authenticated users to obtain sensitive configuration information via unspecified vectors.
References
| ▼ | URL | Tags |
|---|---|---|
| https://kc.mcafee.com/corporate/index?page=content&id=SB10112 | x_refsource_CONFIRM |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-06T05:32:21.292Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10112", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], descriptions: [ { lang: "en", value: "The web interface in McAfee Advanced Threat Defense (MATD) before 3.4.4.63 allows remote authenticated users to obtain sensitive configuration information via unspecified vectors.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2015-04-08T18:00:00Z", orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", shortName: "mitre", }, references: [ { tags: [ "x_refsource_CONFIRM", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10112", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2015-3030", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "The web interface in McAfee Advanced Threat Defense (MATD) before 3.4.4.63 allows remote authenticated users to obtain sensitive configuration information via unspecified vectors.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "https://kc.mcafee.com/corporate/index?page=content&id=SB10112", refsource: "CONFIRM", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10112", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", assignerShortName: "mitre", cveId: "CVE-2015-3030", datePublished: "2015-04-08T18:00:00Z", dateReserved: "2015-04-08T00:00:00Z", dateUpdated: "2024-09-16T20:01:36.430Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2019-3644
Vulnerability from cvelistv5
Published
2019-09-11 14:08
Modified
2024-09-17 01:11
Severity ?
EPSS score ?
Summary
McAfee Web Gateway (MWG) earlier than 7.8.2.13 is vulnerable to a remote attacker exploiting CVE-2019-9517, potentially leading to a denial of service. This affects the scanning proxies.
References
| ▼ | URL | Tags |
|---|---|---|
| https://kc.mcafee.com/corporate/index?page=content&id=SB10296 | x_refsource_CONFIRM |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| McAfee, LLC | McAfee Web Gateway (MWG) |
Version: 7.8.2.13 < 7.8.2.13 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-04T19:12:09.706Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10296", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "McAfee Web Gateway (MWG)", vendor: "McAfee, LLC", versions: [ { lessThan: "7.8.2.13", status: "affected", version: "7.8.2.13", versionType: "custom", }, ], }, ], descriptions: [ { lang: "en", value: "McAfee Web Gateway (MWG) earlier than 7.8.2.13 is vulnerable to a remote attacker exploiting CVE-2019-9517, potentially leading to a denial of service. This affects the scanning proxies.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, }, ], problemTypes: [ { descriptions: [ { description: "Denial of Service", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2019-09-11T14:08:37", orgId: "01626437-bf8f-4d1c-912a-893b5eb04808", shortName: "trellix", }, references: [ { tags: [ "x_refsource_CONFIRM", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10296", }, ], source: { discovery: "EXTERNAL", }, title: "MWG scanners updated to address CVE-2019-9517", x_generator: { engine: "Vulnogram 0.0.8", }, x_legacyV4Record: { CVE_data_meta: { AKA: "", ASSIGNER: "psirt@mcafee.com", DATE_PUBLIC: "", ID: "CVE-2019-3644", STATE: "PUBLIC", TITLE: "MWG scanners updated to address CVE-2019-9517", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "McAfee Web Gateway (MWG)", version: { version_data: [ { platform: "", version_affected: "<", version_name: "7.8.2.13", version_value: "7.8.2.13", }, ], }, }, ], }, vendor_name: "McAfee, LLC", }, ], }, }, configuration: [], credit: [], data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "McAfee Web Gateway (MWG) earlier than 7.8.2.13 is vulnerable to a remote attacker exploiting CVE-2019-9517, potentially leading to a denial of service. This affects the scanning proxies.", }, ], }, exploit: [], generator: { engine: "Vulnogram 0.0.8", }, impact: { cvss: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "Denial of Service", }, ], }, ], }, references: { reference_data: [ { name: "https://kc.mcafee.com/corporate/index?page=content&id=SB10296", refsource: "CONFIRM", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10296", }, ], }, solution: [], source: { advisory: "", defect: [], discovery: "EXTERNAL", }, work_around: [], }, }, }, cveMetadata: { assignerOrgId: "01626437-bf8f-4d1c-912a-893b5eb04808", assignerShortName: "trellix", cveId: "CVE-2019-3644", datePublished: "2019-09-11T14:08:37.545857Z", dateReserved: "2019-01-03T00:00:00", dateUpdated: "2024-09-17T01:11:51.259Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2020-7269
Vulnerability from cvelistv5
Published
2021-04-15 08:00
Modified
2024-08-04 09:25
Severity ?
EPSS score ?
Summary
Exposure of Sensitive Information in the web interface in McAfee Advanced Threat Defense (ATD) prior to 4.12.2 allows remote authenticated users to view sensitive unencrypted information via a carefully crafted HTTP request parameter. The risk is partially mitigated if your ATD instances are deployed as recommended with no direct access from the Internet to them.
References
| ▼ | URL | Tags |
|---|---|---|
| https://kc.mcafee.com/corporate/index?page=content&id=SB10336 | x_refsource_MISC |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| McAfee,LLC | McAfee Advanced Threat Defense (ATD) |
Version: unspecified < 4.12.2 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-04T09:25:48.625Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_MISC", "x_transferred", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10336", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "McAfee Advanced Threat Defense (ATD)", vendor: "McAfee,LLC", versions: [ { lessThan: "4.12.2", status: "affected", version: "unspecified", versionType: "custom", }, ], }, ], descriptions: [ { lang: "en", value: "Exposure of Sensitive Information in the web interface in McAfee Advanced Threat Defense (ATD) prior to 4.12.2 allows remote authenticated users to view sensitive unencrypted information via a carefully crafted HTTP request parameter. The risk is partially mitigated if your ATD instances are deployed as recommended with no direct access from the Internet to them.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "ADJACENT_NETWORK", availabilityImpact: "LOW", baseScore: 4.9, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L", version: "3.1", }, }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-200", description: "CWE-200: Exposure of Sensitive Information to an Unauthorized Actor ", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2021-04-15T08:00:17", orgId: "01626437-bf8f-4d1c-912a-893b5eb04808", shortName: "trellix", }, references: [ { tags: [ "x_refsource_MISC", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10336", }, ], source: { discovery: "UNKNOWN", }, title: "Sensitive Information Exposure in McAfee ATD", x_generator: { engine: "Vulnogram 0.0.9", }, x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "psirt@mcafee.com", ID: "CVE-2020-7269", STATE: "PUBLIC", TITLE: "Sensitive Information Exposure in McAfee ATD", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "McAfee Advanced Threat Defense (ATD)", version: { version_data: [ { version_affected: "<", version_value: "4.12.2", }, ], }, }, ], }, vendor_name: "McAfee,LLC", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Exposure of Sensitive Information in the web interface in McAfee Advanced Threat Defense (ATD) prior to 4.12.2 allows remote authenticated users to view sensitive unencrypted information via a carefully crafted HTTP request parameter. The risk is partially mitigated if your ATD instances are deployed as recommended with no direct access from the Internet to them.", }, ], }, generator: { engine: "Vulnogram 0.0.9", }, impact: { cvss: { attackComplexity: "LOW", attackVector: "ADJACENT_NETWORK", availabilityImpact: "LOW", baseScore: 4.9, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L", version: "3.1", }, }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "CWE-200: Exposure of Sensitive Information to an Unauthorized Actor ", }, ], }, ], }, references: { reference_data: [ { name: "https://kc.mcafee.com/corporate/index?page=content&id=SB10336", refsource: "MISC", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10336", }, ], }, source: { discovery: "UNKNOWN", }, }, }, }, cveMetadata: { assignerOrgId: "01626437-bf8f-4d1c-912a-893b5eb04808", assignerShortName: "trellix", cveId: "CVE-2020-7269", datePublished: "2021-04-15T08:00:17", dateReserved: "2020-01-21T00:00:00", dateUpdated: "2024-08-04T09:25:48.625Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2019-3649
Vulnerability from cvelistv5
Published
2019-11-13 22:30
Modified
2024-08-04 19:12
Severity ?
EPSS score ?
Summary
Information Disclosure vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows remote authenticated attackers to gain access to hashed credentials via carefully constructed POST request extracting incorrectly recorded data from log files.
References
| ▼ | URL | Tags |
|---|---|---|
| https://kc.mcafee.com/corporate/index?page=content&id=SB10304 | x_refsource_MISC |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| McAfee | Advanced Threat Defense (ATD) |
Version: unspecified < 4.8 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-04T19:12:09.656Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_MISC", "x_transferred", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10304", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "Advanced Threat Defense (ATD)", vendor: "McAfee", versions: [ { lessThan: "4.8", status: "affected", version: "unspecified", versionType: "custom", }, ], }, ], descriptions: [ { lang: "en", value: "Information Disclosure vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows remote authenticated attackers to gain access to hashed credentials via carefully constructed POST request extracting incorrectly recorded data from log files.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, }, ], problemTypes: [ { descriptions: [ { description: "Information Disclosure vulnerability", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2019-11-13T22:30:54", orgId: "01626437-bf8f-4d1c-912a-893b5eb04808", shortName: "trellix", }, references: [ { tags: [ "x_refsource_MISC", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10304", }, ], source: { advisory: "SB10304", discovery: "EXTERNAL", }, title: "Advanced Threat Defense (ATD) - Information Disclosure vulnerability", x_generator: { engine: "Vulnogram 0.0.9", }, x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "psirt@mcafee.com", ID: "CVE-2019-3649", STATE: "PUBLIC", TITLE: "Advanced Threat Defense (ATD) - Information Disclosure vulnerability", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "Advanced Threat Defense (ATD)", version: { version_data: [ { version_affected: "<", version_value: "4.8", }, ], }, }, ], }, vendor_name: "McAfee", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Information Disclosure vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows remote authenticated attackers to gain access to hashed credentials via carefully constructed POST request extracting incorrectly recorded data from log files.", }, ], }, generator: { engine: "Vulnogram 0.0.9", }, impact: { cvss: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "Information Disclosure vulnerability", }, ], }, ], }, references: { reference_data: [ { name: "https://kc.mcafee.com/corporate/index?page=content&id=SB10304", refsource: "MISC", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10304", }, ], }, source: { advisory: "SB10304", discovery: "EXTERNAL", }, }, }, }, cveMetadata: { assignerOrgId: "01626437-bf8f-4d1c-912a-893b5eb04808", assignerShortName: "trellix", cveId: "CVE-2019-3649", datePublished: "2019-11-13T22:30:54", dateReserved: "2019-01-03T00:00:00", dateUpdated: "2024-08-04T19:12:09.656Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2017-4057
Vulnerability from cvelistv5
Published
2017-07-12 15:00
Modified
2024-09-17 00:11
Severity ?
EPSS score ?
Summary
Privilege Escalation vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote authenticated users to gain elevated privileges via the GUI or GUI terminal commands.
References
| ▼ | URL | Tags |
|---|---|---|
| https://kc.mcafee.com/corporate/index?page=content&id=SB10204 | x_refsource_CONFIRM | |
| http://www.securityfocus.com/bid/99561 | vdb-entry, x_refsource_BID |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| McAfee | Advanced Threat Defense (ATD) |
Version: 3.10 Version: 3.8 Version: 3.6 Version: 3.9 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-05T14:39:41.156Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10204", }, { name: "99561", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/99561", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "Advanced Threat Defense (ATD)", vendor: "McAfee", versions: [ { status: "affected", version: "3.10", }, { status: "affected", version: "3.8", }, { status: "affected", version: "3.6", }, { status: "affected", version: "3.9", }, ], }, ], datePublic: "2017-07-11T00:00:00", descriptions: [ { lang: "en", value: "Privilege Escalation vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote authenticated users to gain elevated privileges via the GUI or GUI terminal commands.", }, ], problemTypes: [ { descriptions: [ { description: "Privilege Escalation vulnerability", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2017-07-14T09:57:01", orgId: "6dda929c-bb53-4a77-a76d-48e79601a1ce", shortName: "intel", }, references: [ { tags: [ "x_refsource_CONFIRM", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10204", }, { name: "99561", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/99561", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "secure@intel.com", DATE_PUBLIC: "2017-07-11T00:00:00", ID: "CVE-2017-4057", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "Advanced Threat Defense (ATD)", version: { version_data: [ { version_value: "3.10", }, { version_value: "3.8", }, { version_value: "3.6", }, { version_value: "3.9", }, ], }, }, ], }, vendor_name: "McAfee", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Privilege Escalation vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote authenticated users to gain elevated privileges via the GUI or GUI terminal commands.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "Privilege Escalation vulnerability", }, ], }, ], }, references: { reference_data: [ { name: "https://kc.mcafee.com/corporate/index?page=content&id=SB10204", refsource: "CONFIRM", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10204", }, { name: "99561", refsource: "BID", url: "http://www.securityfocus.com/bid/99561", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "6dda929c-bb53-4a77-a76d-48e79601a1ce", assignerShortName: "intel", cveId: "CVE-2017-4057", datePublished: "2017-07-12T15:00:00Z", dateReserved: "2016-12-26T00:00:00", dateUpdated: "2024-09-17T00:11:36.953Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2019-3651
Vulnerability from cvelistv5
Published
2019-11-13 22:45
Modified
2024-08-04 19:12
Severity ?
EPSS score ?
Summary
Information Disclosure vulnerability in McAfee Advanced Threat Defense (ATD prior to 4.8 allows remote authenticated attackers to gain access to ePO as an administrator via using the atduser credentials, which were too permissive.
References
| ▼ | URL | Tags |
|---|---|---|
| https://kc.mcafee.com/corporate/index?page=content&id=SB10304 | x_refsource_MISC |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| McAfee | Advanced Threat Defense (ATD) |
Version: unspecified < 4.8 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-04T19:12:09.709Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_MISC", "x_transferred", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10304", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "Advanced Threat Defense (ATD)", vendor: "McAfee", versions: [ { lessThan: "4.8", status: "affected", version: "unspecified", versionType: "custom", }, ], }, ], descriptions: [ { lang: "en", value: "Information Disclosure vulnerability in McAfee Advanced Threat Defense (ATD prior to 4.8 allows remote authenticated attackers to gain access to ePO as an administrator via using the atduser credentials, which were too permissive.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, }, ], problemTypes: [ { descriptions: [ { description: "Information Disclosure vulnerability", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2019-11-14T12:43:35", orgId: "01626437-bf8f-4d1c-912a-893b5eb04808", shortName: "trellix", }, references: [ { tags: [ "x_refsource_MISC", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10304", }, ], source: { advisory: "SB10304", discovery: "EXTERNAL", }, title: "Advanced Threat Defense (ATD) - Information Disclosure vulnerability", x_generator: { engine: "Vulnogram 0.0.9", }, x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "psirt@mcafee.com", ID: "CVE-2019-3651", STATE: "PUBLIC", TITLE: "Advanced Threat Defense (ATD) - Information Disclosure vulnerability", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "Advanced Threat Defense (ATD)", version: { version_data: [ { version_affected: "<", version_value: "4.8", }, ], }, }, ], }, vendor_name: "McAfee", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Information Disclosure vulnerability in McAfee Advanced Threat Defense (ATD prior to 4.8 allows remote authenticated attackers to gain access to ePO as an administrator via using the atduser credentials, which were too permissive.", }, ], }, generator: { engine: "Vulnogram 0.0.9", }, impact: { cvss: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "Information Disclosure vulnerability", }, ], }, ], }, references: { reference_data: [ { name: "https://kc.mcafee.com/corporate/index?page=content&id=SB10304", refsource: "MISC", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10304", }, ], }, source: { advisory: "SB10304", discovery: "EXTERNAL", }, }, }, }, cveMetadata: { assignerOrgId: "01626437-bf8f-4d1c-912a-893b5eb04808", assignerShortName: "trellix", cveId: "CVE-2019-3651", datePublished: "2019-11-13T22:45:53", dateReserved: "2019-01-03T00:00:00", dateUpdated: "2024-08-04T19:12:09.709Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2017-4055
Vulnerability from cvelistv5
Published
2017-07-12 15:00
Modified
2024-09-17 03:52
Severity ?
EPSS score ?
Summary
Exploitation of Authentication vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote unauthenticated users / remote attackers to bypass ATD detection via loose enforcement of authentication and authorization.
References
| ▼ | URL | Tags |
|---|---|---|
| http://www.securityfocus.com/bid/99564 | vdb-entry, x_refsource_BID | |
| https://kc.mcafee.com/corporate/index?page=content&id=SB10204 | x_refsource_CONFIRM |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| McAfee | Advanced Threat Defense (ATD) |
Version: 3.10 Version: 3.8 Version: 3.6 Version: 3.7 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-05T14:39:41.274Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "99564", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/99564", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10204", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "Advanced Threat Defense (ATD)", vendor: "McAfee", versions: [ { status: "affected", version: "3.10", }, { status: "affected", version: "3.8", }, { status: "affected", version: "3.6", }, { status: "affected", version: "3.7", }, ], }, ], datePublic: "2017-07-11T00:00:00", descriptions: [ { lang: "en", value: "Exploitation of Authentication vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote unauthenticated users / remote attackers to bypass ATD detection via loose enforcement of authentication and authorization.", }, ], problemTypes: [ { descriptions: [ { description: "Exploitation of Authentication vulnerability", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2017-07-14T09:57:01", orgId: "6dda929c-bb53-4a77-a76d-48e79601a1ce", shortName: "intel", }, references: [ { name: "99564", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/99564", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10204", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "secure@intel.com", DATE_PUBLIC: "2017-07-11T00:00:00", ID: "CVE-2017-4055", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "Advanced Threat Defense (ATD)", version: { version_data: [ { version_value: "3.10", }, { version_value: "3.8", }, { version_value: "3.6", }, { version_value: "3.7", }, ], }, }, ], }, vendor_name: "McAfee", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Exploitation of Authentication vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote unauthenticated users / remote attackers to bypass ATD detection via loose enforcement of authentication and authorization.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "Exploitation of Authentication vulnerability", }, ], }, ], }, references: { reference_data: [ { name: "99564", refsource: "BID", url: "http://www.securityfocus.com/bid/99564", }, { name: "https://kc.mcafee.com/corporate/index?page=content&id=SB10204", refsource: "CONFIRM", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10204", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "6dda929c-bb53-4a77-a76d-48e79601a1ce", assignerShortName: "intel", cveId: "CVE-2017-4055", datePublished: "2017-07-12T15:00:00Z", dateReserved: "2016-12-26T00:00:00", dateUpdated: "2024-09-17T03:52:48.514Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2015-8986
Vulnerability from cvelistv5
Published
2017-03-14 22:00
Modified
2024-08-06 08:36
Severity ?
EPSS score ?
Summary
Sandbox detection evasion vulnerability in hardware appliances in McAfee (now Intel Security) Advanced Threat Defense (MATD) 3.4.2.32 and earlier allows attackers to detect the sandbox environment, then bypass proper malware detection resulting in failure to detect a malware file (false-negative) via specially crafted malware.
References
| ▼ | URL | Tags |
|---|---|---|
| https://kc.mcafee.com/corporate/index?page=content&id=SB10096 | x_refsource_CONFIRM |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| Intel | Advanced Threat Defense (MATD) |
Version: 3.4.2.32 and earlier |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-06T08:36:31.678Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10096", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "Advanced Threat Defense (MATD)", vendor: "Intel", versions: [ { status: "affected", version: "3.4.2.32 and earlier", }, ], }, ], datePublic: "2015-01-09T00:00:00", descriptions: [ { lang: "en", value: "Sandbox detection evasion vulnerability in hardware appliances in McAfee (now Intel Security) Advanced Threat Defense (MATD) 3.4.2.32 and earlier allows attackers to detect the sandbox environment, then bypass proper malware detection resulting in failure to detect a malware file (false-negative) via specially crafted malware.", }, ], problemTypes: [ { descriptions: [ { description: "Sandbox detection evasion vulnerability", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2017-03-14T21:57:01", orgId: "6dda929c-bb53-4a77-a76d-48e79601a1ce", shortName: "intel", }, references: [ { tags: [ "x_refsource_CONFIRM", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10096", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "secure@intel.com", ID: "CVE-2015-8986", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "Advanced Threat Defense (MATD)", version: { version_data: [ { version_value: "3.4.2.32 and earlier", }, ], }, }, ], }, vendor_name: "Intel", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Sandbox detection evasion vulnerability in hardware appliances in McAfee (now Intel Security) Advanced Threat Defense (MATD) 3.4.2.32 and earlier allows attackers to detect the sandbox environment, then bypass proper malware detection resulting in failure to detect a malware file (false-negative) via specially crafted malware.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "Sandbox detection evasion vulnerability", }, ], }, ], }, references: { reference_data: [ { name: "https://kc.mcafee.com/corporate/index?page=content&id=SB10096", refsource: "CONFIRM", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10096", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "6dda929c-bb53-4a77-a76d-48e79601a1ce", assignerShortName: "intel", cveId: "CVE-2015-8986", datePublished: "2017-03-14T22:00:00", dateReserved: "2017-02-27T00:00:00", dateUpdated: "2024-08-06T08:36:31.678Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2017-4053
Vulnerability from cvelistv5
Published
2017-07-12 15:00
Modified
2024-09-16 22:41
Severity ?
EPSS score ?
Summary
Command Injection vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote unauthenticated users / remote attackers to execute a command of their choice via a crafted HTTP request parameter.
References
| ▼ | URL | Tags |
|---|---|---|
| https://kc.mcafee.com/corporate/index?page=content&id=SB10204 | x_refsource_CONFIRM | |
| http://www.securityfocus.com/bid/99560 | vdb-entry, x_refsource_BID |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| McAfee | Advanced Threat Defense (ATD) |
Version: 3.10 Version: 3.8 Version: 3.6 Version: 3.5 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-05T14:39:41.372Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10204", }, { name: "99560", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/99560", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "Advanced Threat Defense (ATD)", vendor: "McAfee", versions: [ { status: "affected", version: "3.10", }, { status: "affected", version: "3.8", }, { status: "affected", version: "3.6", }, { status: "affected", version: "3.5", }, ], }, ], datePublic: "2017-07-11T00:00:00", descriptions: [ { lang: "en", value: "Command Injection vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote unauthenticated users / remote attackers to execute a command of their choice via a crafted HTTP request parameter.", }, ], problemTypes: [ { descriptions: [ { description: "Command Injection vulnerability", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2017-07-14T09:57:01", orgId: "6dda929c-bb53-4a77-a76d-48e79601a1ce", shortName: "intel", }, references: [ { tags: [ "x_refsource_CONFIRM", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10204", }, { name: "99560", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/99560", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "secure@intel.com", DATE_PUBLIC: "2017-07-11T00:00:00", ID: "CVE-2017-4053", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "Advanced Threat Defense (ATD)", version: { version_data: [ { version_value: "3.10", }, { version_value: "3.8", }, { version_value: "3.6", }, { version_value: "3.5", }, ], }, }, ], }, vendor_name: "McAfee", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Command Injection vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote unauthenticated users / remote attackers to execute a command of their choice via a crafted HTTP request parameter.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "Command Injection vulnerability", }, ], }, ], }, references: { reference_data: [ { name: "https://kc.mcafee.com/corporate/index?page=content&id=SB10204", refsource: "CONFIRM", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10204", }, { name: "99560", refsource: "BID", url: "http://www.securityfocus.com/bid/99560", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "6dda929c-bb53-4a77-a76d-48e79601a1ce", assignerShortName: "intel", cveId: "CVE-2017-4053", datePublished: "2017-07-12T15:00:00Z", dateReserved: "2016-12-26T00:00:00", dateUpdated: "2024-09-16T22:41:29.204Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2019-3662
Vulnerability from cvelistv5
Published
2019-11-13 23:45
Modified
2024-08-04 19:12
Severity ?
EPSS score ?
Summary
Path Traversal: '/absolute/pathname/here' vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows remote authenticated attacker to gain unintended access to files on the system via carefully constructed HTTP requests.
References
| ▼ | URL | Tags |
|---|---|---|
| https://kc.mcafee.com/corporate/index?page=content&id=SB10304 | x_refsource_MISC |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| McAfee | Advanced Threat Defense (ATD) |
Version: unspecified < 4.8 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-04T19:12:09.656Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_MISC", "x_transferred", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10304", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "Advanced Threat Defense (ATD)", vendor: "McAfee", versions: [ { lessThan: "4.8", status: "affected", version: "unspecified", versionType: "custom", }, ], }, ], descriptions: [ { lang: "en", value: "Path Traversal: '/absolute/pathname/here' vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows remote authenticated attacker to gain unintended access to files on the system via carefully constructed HTTP requests.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, }, ], problemTypes: [ { descriptions: [ { description: "Path Traversal: '/absolute/pathname/here' vulnerability", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2019-11-13T23:45:53", orgId: "01626437-bf8f-4d1c-912a-893b5eb04808", shortName: "trellix", }, references: [ { tags: [ "x_refsource_MISC", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10304", }, ], source: { advisory: "SB10304", discovery: "EXTERNAL", }, title: "Advanced Threat Defense (ATD) - Path Traversal: '/absolute/pathname/here' vulnerability", x_generator: { engine: "Vulnogram 0.0.9", }, x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "psirt@mcafee.com", ID: "CVE-2019-3662", STATE: "PUBLIC", TITLE: "Advanced Threat Defense (ATD) - Path Traversal: '/absolute/pathname/here' vulnerability", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "Advanced Threat Defense (ATD)", version: { version_data: [ { version_affected: "<", version_value: "4.8", }, ], }, }, ], }, vendor_name: "McAfee", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Path Traversal: '/absolute/pathname/here' vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows remote authenticated attacker to gain unintended access to files on the system via carefully constructed HTTP requests.", }, ], }, generator: { engine: "Vulnogram 0.0.9", }, impact: { cvss: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "Path Traversal: '/absolute/pathname/here' vulnerability", }, ], }, ], }, references: { reference_data: [ { name: "https://kc.mcafee.com/corporate/index?page=content&id=SB10304", refsource: "MISC", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10304", }, ], }, source: { advisory: "SB10304", discovery: "EXTERNAL", }, }, }, }, cveMetadata: { assignerOrgId: "01626437-bf8f-4d1c-912a-893b5eb04808", assignerShortName: "trellix", cveId: "CVE-2019-3662", datePublished: "2019-11-13T23:45:53", dateReserved: "2019-01-03T00:00:00", dateUpdated: "2024-08-04T19:12:09.656Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2020-7262
Vulnerability from cvelistv5
Published
2020-06-22 08:35
Modified
2024-09-16 18:17
Severity ?
EPSS score ?
Summary
Improper Access Control vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.10.0 allows local users to view sensitive files via a carefully crafted HTTP request parameter.
References
| ▼ | URL | Tags |
|---|---|---|
| https://kc.mcafee.com/corporate/index?page=content&id=SB10319 | x_refsource_CONFIRM |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| McAfee, LLC | McAfee Advanced Threat Defense (ATD) |
Version: 4.x < 4.10.0 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-04T09:25:48.567Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10319", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "McAfee Advanced Threat Defense (ATD)", vendor: "McAfee, LLC", versions: [ { lessThan: "4.10.0", status: "affected", version: "4.x", versionType: "custom", }, ], }, ], datePublic: "2020-06-18T00:00:00", descriptions: [ { lang: "en", value: "Improper Access Control vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.10.0 allows local users to view sensitive files via a carefully crafted HTTP request parameter.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-200", description: "CWE-200: Exposure of Sensitive Information to an Unauthorized Actor", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2020-06-22T08:35:12", orgId: "01626437-bf8f-4d1c-912a-893b5eb04808", shortName: "trellix", }, references: [ { tags: [ "x_refsource_CONFIRM", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10319", }, ], source: { discovery: "INTERNAL", }, title: "Improper Access Control vulnerability in ATD", x_generator: { engine: "Vulnogram 0.0.9", }, x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "psirt@mcafee.com", DATE_PUBLIC: "2020-06-18T00:00:00.000Z", ID: "CVE-2020-7262", STATE: "PUBLIC", TITLE: "Improper Access Control vulnerability in ATD", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "McAfee Advanced Threat Defense (ATD)", version: { version_data: [ { version_affected: "<", version_name: "4.x", version_value: "4.10.0", }, ], }, }, ], }, vendor_name: "McAfee, LLC", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Improper Access Control vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.10.0 allows local users to view sensitive files via a carefully crafted HTTP request parameter.", }, ], }, generator: { engine: "Vulnogram 0.0.9", }, impact: { cvss: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "CWE-200: Exposure of Sensitive Information to an Unauthorized Actor", }, ], }, ], }, references: { reference_data: [ { name: "https://kc.mcafee.com/corporate/index?page=content&id=SB10319", refsource: "CONFIRM", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10319", }, ], }, source: { discovery: "INTERNAL", }, }, }, }, cveMetadata: { assignerOrgId: "01626437-bf8f-4d1c-912a-893b5eb04808", assignerShortName: "trellix", cveId: "CVE-2020-7262", datePublished: "2020-06-22T08:35:12.625240Z", dateReserved: "2020-01-21T00:00:00", dateUpdated: "2024-09-16T18:17:58.219Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2019-3650
Vulnerability from cvelistv5
Published
2019-11-13 22:46
Modified
2024-08-04 19:12
Severity ?
EPSS score ?
Summary
Information Disclosure vulnerability in McAfee Advanced Threat Defense (ATD prior to 4.8 allows remote authenticated attackers to gain access to the atduser credentials via carefully constructed GET request extracting insecurely information stored in the database.
References
| ▼ | URL | Tags |
|---|---|---|
| https://kc.mcafee.com/corporate/index?page=content&id=SB10304 | x_refsource_MISC |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| McAfee | Advanced Threat Defense (ATD) |
Version: unspecified < 4.8 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-04T19:12:09.655Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_MISC", "x_transferred", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10304", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "Advanced Threat Defense (ATD)", vendor: "McAfee", versions: [ { lessThan: "4.8", status: "affected", version: "unspecified", versionType: "custom", }, ], }, ], descriptions: [ { lang: "en", value: "Information Disclosure vulnerability in McAfee Advanced Threat Defense (ATD prior to 4.8 allows remote authenticated attackers to gain access to the atduser credentials via carefully constructed GET request extracting insecurely information stored in the database.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, }, ], problemTypes: [ { descriptions: [ { description: "Information Disclosure vulnerability", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2019-11-13T22:46:00", orgId: "01626437-bf8f-4d1c-912a-893b5eb04808", shortName: "trellix", }, references: [ { tags: [ "x_refsource_MISC", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10304", }, ], source: { advisory: "SB10304", discovery: "EXTERNAL", }, title: "Advanced Threat Defense (ATD) - Information Disclosure vulnerability", x_generator: { engine: "Vulnogram 0.0.9", }, x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "psirt@mcafee.com", ID: "CVE-2019-3650", STATE: "PUBLIC", TITLE: "Advanced Threat Defense (ATD) - Information Disclosure vulnerability", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "Advanced Threat Defense (ATD)", version: { version_data: [ { version_affected: "<", version_value: "4.8", }, ], }, }, ], }, vendor_name: "McAfee", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Information Disclosure vulnerability in McAfee Advanced Threat Defense (ATD prior to 4.8 allows remote authenticated attackers to gain access to the atduser credentials via carefully constructed GET request extracting insecurely information stored in the database.", }, ], }, generator: { engine: "Vulnogram 0.0.9", }, impact: { cvss: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "Information Disclosure vulnerability", }, ], }, ], }, references: { reference_data: [ { name: "https://kc.mcafee.com/corporate/index?page=content&id=SB10304", refsource: "MISC", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10304", }, ], }, source: { advisory: "SB10304", discovery: "EXTERNAL", }, }, }, }, cveMetadata: { assignerOrgId: "01626437-bf8f-4d1c-912a-893b5eb04808", assignerShortName: "trellix", cveId: "CVE-2019-3650", datePublished: "2019-11-13T22:46:01", dateReserved: "2019-01-03T00:00:00", dateUpdated: "2024-08-04T19:12:09.655Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2019-3663
Vulnerability from cvelistv5
Published
2019-11-13 23:50
Modified
2024-08-04 19:12
Severity ?
EPSS score ?
Summary
Unprotected Storage of Credentials vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows local attacker to gain access to the root password via accessing sensitive files on the system. This was originally published with a CVSS rating of High, further investigation has resulted in this being updated to Critical. The root password is common across all instances of ATD prior to 4.8. See the Security bulletin for further details
References
| ▼ | URL | Tags |
|---|---|---|
| https://kc.mcafee.com/corporate/index?page=content&id=SB10304 | x_refsource_CONFIRM |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| McAfee | Advanced Threat Defense (ATD) |
Version: prior to 4.8 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-04T19:12:09.599Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10304", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "Advanced Threat Defense (ATD)", vendor: "McAfee", versions: [ { status: "affected", version: "prior to 4.8", }, ], }, ], descriptions: [ { lang: "en", value: "Unprotected Storage of Credentials vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows local attacker to gain access to the root password via accessing sensitive files on the system. This was originally published with a CVSS rating of High, further investigation has resulted in this being updated to Critical. The root password is common across all instances of ATD prior to 4.8. See the Security bulletin for further details", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, }, ], problemTypes: [ { descriptions: [ { description: "Unprotected Storage of Credentials vulnerability", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2020-01-07T17:50:23", orgId: "01626437-bf8f-4d1c-912a-893b5eb04808", shortName: "trellix", }, references: [ { tags: [ "x_refsource_CONFIRM", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10304", }, ], source: { advisory: "SB10304", discovery: "EXTERNAL", }, title: "Advanced Threat Defense (ATD) - Unprotected storage of shared credentials vulnerability", x_generator: { engine: "Vulnogram 0.0.9", }, x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "psirt@mcafee.com", ID: "CVE-2019-3663", STATE: "PUBLIC", TITLE: "Advanced Threat Defense (ATD) - Unprotected storage of shared credentials vulnerability", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "Advanced Threat Defense (ATD)", version: { version_data: [ { version_value: "prior to 4.8", }, ], }, }, ], }, vendor_name: "McAfee", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Unprotected Storage of Credentials vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows local attacker to gain access to the root password via accessing sensitive files on the system. This was originally published with a CVSS rating of High, further investigation has resulted in this being updated to Critical. The root password is common across all instances of ATD prior to 4.8. See the Security bulletin for further details", }, ], }, generator: { engine: "Vulnogram 0.0.9", }, impact: { cvss: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "Unprotected Storage of Credentials vulnerability", }, ], }, ], }, references: { reference_data: [ { name: "https://kc.mcafee.com/corporate/index?page=content&id=SB10304", refsource: "CONFIRM", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10304", }, ], }, source: { advisory: "SB10304", discovery: "EXTERNAL", }, }, }, }, cveMetadata: { assignerOrgId: "01626437-bf8f-4d1c-912a-893b5eb04808", assignerShortName: "trellix", cveId: "CVE-2019-3663", datePublished: "2019-11-13T23:50:52", dateReserved: "2019-01-03T00:00:00", dateUpdated: "2024-08-04T19:12:09.599Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2015-3029
Vulnerability from cvelistv5
Published
2015-04-08 18:00
Modified
2024-09-16 19:46
Severity ?
EPSS score ?
Summary
The web interface in McAfee Advanced Threat Defense (MATD) before 3.4.4.63 does not properly restrict access, which allows remote authenticated users to obtain sensitive information via unspecified vectors.
References
| ▼ | URL | Tags |
|---|---|---|
| https://kc.mcafee.com/corporate/index?page=content&id=SB10112 | x_refsource_CONFIRM |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-06T05:32:21.367Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10112", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], descriptions: [ { lang: "en", value: "The web interface in McAfee Advanced Threat Defense (MATD) before 3.4.4.63 does not properly restrict access, which allows remote authenticated users to obtain sensitive information via unspecified vectors.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2015-04-08T18:00:00Z", orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", shortName: "mitre", }, references: [ { tags: [ "x_refsource_CONFIRM", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10112", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2015-3029", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "The web interface in McAfee Advanced Threat Defense (MATD) before 3.4.4.63 does not properly restrict access, which allows remote authenticated users to obtain sensitive information via unspecified vectors.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "https://kc.mcafee.com/corporate/index?page=content&id=SB10112", refsource: "CONFIRM", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10112", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", assignerShortName: "mitre", cveId: "CVE-2015-3029", datePublished: "2015-04-08T18:00:00Z", dateReserved: "2015-04-08T00:00:00Z", dateUpdated: "2024-09-16T19:46:07.199Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2019-3643
Vulnerability from cvelistv5
Published
2019-09-11 14:08
Modified
2024-09-16 17:49
Severity ?
EPSS score ?
Summary
McAfee Web Gateway (MWG) earlier than 7.8.2.13 is vulnerable to a remote attacker exploiting CVE-2019-9511, potentially leading to a denial of service. This affects the scanning proxies.
References
| ▼ | URL | Tags |
|---|---|---|
| https://kc.mcafee.com/corporate/index?page=content&id=SB10296 | x_refsource_CONFIRM |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| McAfee, LLC | McAfee Web Gateway (MWG) |
Version: 7.8.2.13 < 7.8.2.13 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-04T19:12:09.652Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10296", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "McAfee Web Gateway (MWG)", vendor: "McAfee, LLC", versions: [ { lessThan: "7.8.2.13", status: "affected", version: "7.8.2.13", versionType: "custom", }, ], }, ], descriptions: [ { lang: "en", value: "McAfee Web Gateway (MWG) earlier than 7.8.2.13 is vulnerable to a remote attacker exploiting CVE-2019-9511, potentially leading to a denial of service. This affects the scanning proxies.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", version: "3.1", }, }, ], problemTypes: [ { descriptions: [ { description: "Denial of Service", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2019-09-11T14:08:19", orgId: "01626437-bf8f-4d1c-912a-893b5eb04808", shortName: "trellix", }, references: [ { tags: [ "x_refsource_CONFIRM", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10296", }, ], source: { discovery: "EXTERNAL", }, title: "MWG scanners updated to address CVE-2019-9511", x_generator: { engine: "Vulnogram 0.0.8", }, x_legacyV4Record: { CVE_data_meta: { AKA: "", ASSIGNER: "psirt@mcafee.com", DATE_PUBLIC: "", ID: "CVE-2019-3643", STATE: "PUBLIC", TITLE: "MWG scanners updated to address CVE-2019-9511", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "McAfee Web Gateway (MWG)", version: { version_data: [ { platform: "", version_affected: "<", version_name: "7.8.2.13", version_value: "7.8.2.13", }, ], }, }, ], }, vendor_name: "McAfee, LLC", }, ], }, }, configuration: [], credit: [], data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "McAfee Web Gateway (MWG) earlier than 7.8.2.13 is vulnerable to a remote attacker exploiting CVE-2019-9511, potentially leading to a denial of service. This affects the scanning proxies.", }, ], }, exploit: [], generator: { engine: "Vulnogram 0.0.8", }, impact: { cvss: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", version: "3.1", }, }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "Denial of Service", }, ], }, ], }, references: { reference_data: [ { name: "https://kc.mcafee.com/corporate/index?page=content&id=SB10296", refsource: "CONFIRM", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10296", }, ], }, solution: [], source: { advisory: "", defect: [], discovery: "EXTERNAL", }, work_around: [], }, }, }, cveMetadata: { assignerOrgId: "01626437-bf8f-4d1c-912a-893b5eb04808", assignerShortName: "trellix", cveId: "CVE-2019-3643", datePublished: "2019-09-11T14:08:19.340279Z", dateReserved: "2019-01-03T00:00:00", dateUpdated: "2024-09-16T17:49:16.217Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2017-4054
Vulnerability from cvelistv5
Published
2017-07-12 15:00
Modified
2024-09-16 18:43
Severity ?
EPSS score ?
Summary
Command Injection vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote authenticated users to execute a command of their choice via a crafted HTTP request parameter.
References
| ▼ | URL | Tags |
|---|---|---|
| http://www.securityfocus.com/bid/99559 | vdb-entry, x_refsource_BID | |
| https://kc.mcafee.com/corporate/index?page=content&id=SB10204 | x_refsource_CONFIRM |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| McAfee | Advanced Threat Defense (ATD) |
Version: 3.10 Version: 3.8 Version: 3.6 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-05T14:39:41.454Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "99559", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/99559", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10204", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "Advanced Threat Defense (ATD)", vendor: "McAfee", versions: [ { status: "affected", version: "3.10", }, { status: "affected", version: "3.8", }, { status: "affected", version: "3.6", }, ], }, ], datePublic: "2017-07-11T00:00:00", descriptions: [ { lang: "en", value: "Command Injection vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote authenticated users to execute a command of their choice via a crafted HTTP request parameter.", }, ], problemTypes: [ { descriptions: [ { description: "Command Injection vulnerability", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2017-07-14T09:57:01", orgId: "6dda929c-bb53-4a77-a76d-48e79601a1ce", shortName: "intel", }, references: [ { name: "99559", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/99559", }, { tags: [ "x_refsource_CONFIRM", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10204", }, ], x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "secure@intel.com", DATE_PUBLIC: "2017-07-11T00:00:00", ID: "CVE-2017-4054", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "Advanced Threat Defense (ATD)", version: { version_data: [ { version_value: "3.10", }, { version_value: "3.8", }, { version_value: "3.6", }, { version_value: "3.6", }, ], }, }, ], }, vendor_name: "McAfee", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Command Injection vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote authenticated users to execute a command of their choice via a crafted HTTP request parameter.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "Command Injection vulnerability", }, ], }, ], }, references: { reference_data: [ { name: "99559", refsource: "BID", url: "http://www.securityfocus.com/bid/99559", }, { name: "https://kc.mcafee.com/corporate/index?page=content&id=SB10204", refsource: "CONFIRM", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10204", }, ], }, }, }, }, cveMetadata: { assignerOrgId: "6dda929c-bb53-4a77-a76d-48e79601a1ce", assignerShortName: "intel", cveId: "CVE-2017-4054", datePublished: "2017-07-12T15:00:00Z", dateReserved: "2016-12-26T00:00:00", dateUpdated: "2024-09-16T18:43:27.165Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2019-3661
Vulnerability from cvelistv5
Published
2019-11-13 23:40
Modified
2024-08-04 19:12
Severity ?
EPSS score ?
Summary
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows remote authenticated attacker to execute database commands via carefully constructed time based payloads.
References
| ▼ | URL | Tags |
|---|---|---|
| https://kc.mcafee.com/corporate/index?page=content&id=SB10304 | x_refsource_MISC |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| McAfee | Advanced Threat Defense (ATD) |
Version: unspecified < 4.8 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-04T19:12:09.667Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_MISC", "x_transferred", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10304", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "Advanced Threat Defense (ATD)", vendor: "McAfee", versions: [ { lessThan: "4.8", status: "affected", version: "unspecified", versionType: "custom", }, ], }, ], descriptions: [ { lang: "en", value: "Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows remote authenticated attacker to execute database commands via carefully constructed time based payloads.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N", version: "3.1", }, }, ], problemTypes: [ { descriptions: [ { description: "Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2019-11-13T23:40:51", orgId: "01626437-bf8f-4d1c-912a-893b5eb04808", shortName: "trellix", }, references: [ { tags: [ "x_refsource_MISC", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10304", }, ], source: { advisory: "SB10304", discovery: "EXTERNAL", }, title: "Advanced Threat Defense (ATD) - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')", x_generator: { engine: "Vulnogram 0.0.9", }, x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "psirt@mcafee.com", ID: "CVE-2019-3661", STATE: "PUBLIC", TITLE: "Advanced Threat Defense (ATD) - Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "Advanced Threat Defense (ATD)", version: { version_data: [ { version_affected: "<", version_value: "4.8", }, ], }, }, ], }, vendor_name: "McAfee", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows remote authenticated attacker to execute database commands via carefully constructed time based payloads.", }, ], }, generator: { engine: "Vulnogram 0.0.9", }, impact: { cvss: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N", version: "3.1", }, }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')", }, ], }, ], }, references: { reference_data: [ { name: "https://kc.mcafee.com/corporate/index?page=content&id=SB10304", refsource: "MISC", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10304", }, ], }, source: { advisory: "SB10304", discovery: "EXTERNAL", }, }, }, }, cveMetadata: { assignerOrgId: "01626437-bf8f-4d1c-912a-893b5eb04808", assignerShortName: "trellix", cveId: "CVE-2019-3661", datePublished: "2019-11-13T23:40:52", dateReserved: "2019-01-03T00:00:00", dateUpdated: "2024-08-04T19:12:09.667Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
cve-2020-7270
Vulnerability from cvelistv5
Published
2021-04-15 08:05
Modified
2024-08-04 09:25
Severity ?
EPSS score ?
Summary
Exposure of Sensitive Information in the web interface in McAfee Advanced Threat Defense (ATD) prior to 4.12.2 allows remote authenticated users to view sensitive unencrypted information via a carefully crafted HTTP request parameter. The risk is partially mitigated if your ATD instances are deployed as recommended with no direct access from the Internet to them.
References
| ▼ | URL | Tags |
|---|---|---|
| https://kc.mcafee.com/corporate/index?page=content&id=SB10336 | x_refsource_MISC |
Impacted products
| Vendor | Product | Version | ||
|---|---|---|---|---|
| McAfee,LLC | McAfee Advanced Threat Defense (ATD) |
Version: unspecified < 4.12.2 |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-04T09:25:48.671Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_refsource_MISC", "x_transferred", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10336", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "McAfee Advanced Threat Defense (ATD)", vendor: "McAfee,LLC", versions: [ { lessThan: "4.12.2", status: "affected", version: "unspecified", versionType: "custom", }, ], }, ], descriptions: [ { lang: "en", value: "Exposure of Sensitive Information in the web interface in McAfee Advanced Threat Defense (ATD) prior to 4.12.2 allows remote authenticated users to view sensitive unencrypted information via a carefully crafted HTTP request parameter. The risk is partially mitigated if your ATD instances are deployed as recommended with no direct access from the Internet to them.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "ADJACENT_NETWORK", availabilityImpact: "LOW", baseScore: 4.9, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L", version: "3.1", }, }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-200", description: "CWE-200: Exposure of Sensitive Information to an Unauthorized Actor ", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2021-04-15T08:05:19", orgId: "01626437-bf8f-4d1c-912a-893b5eb04808", shortName: "trellix", }, references: [ { tags: [ "x_refsource_MISC", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10336", }, ], source: { discovery: "EXTERNAL", }, title: "Sensitive Information Exposure in McAfee ATD", x_generator: { engine: "Vulnogram 0.0.9", }, x_legacyV4Record: { CVE_data_meta: { ASSIGNER: "psirt@mcafee.com", ID: "CVE-2020-7270", STATE: "PUBLIC", TITLE: "Sensitive Information Exposure in McAfee ATD", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "McAfee Advanced Threat Defense (ATD)", version: { version_data: [ { version_affected: "<", version_value: "4.12.2", }, ], }, }, ], }, vendor_name: "McAfee,LLC", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Exposure of Sensitive Information in the web interface in McAfee Advanced Threat Defense (ATD) prior to 4.12.2 allows remote authenticated users to view sensitive unencrypted information via a carefully crafted HTTP request parameter. The risk is partially mitigated if your ATD instances are deployed as recommended with no direct access from the Internet to them.", }, ], }, generator: { engine: "Vulnogram 0.0.9", }, impact: { cvss: { attackComplexity: "LOW", attackVector: "ADJACENT_NETWORK", availabilityImpact: "LOW", baseScore: 4.9, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L", version: "3.1", }, }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "CWE-200: Exposure of Sensitive Information to an Unauthorized Actor ", }, ], }, ], }, references: { reference_data: [ { name: "https://kc.mcafee.com/corporate/index?page=content&id=SB10336", refsource: "MISC", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10336", }, ], }, source: { discovery: "EXTERNAL", }, }, }, }, cveMetadata: { assignerOrgId: "01626437-bf8f-4d1c-912a-893b5eb04808", assignerShortName: "trellix", cveId: "CVE-2020-7270", datePublished: "2021-04-15T08:05:19", dateReserved: "2020-01-21T00:00:00", dateUpdated: "2024-08-04T09:25:48.671Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", }
Vulnerability from fkie_nvd
Published
2017-03-14 22:59
Modified
2024-11-21 02:39
Severity ?
Summary
Sandbox detection evasion vulnerability in hardware appliances in McAfee (now Intel Security) Advanced Threat Defense (MATD) 3.4.2.32 and earlier allows attackers to detect the sandbox environment, then bypass proper malware detection resulting in failure to detect a malware file (false-negative) via specially crafted malware.
References
| ▼ | URL | Tags | |
|---|---|---|---|
| secure@intel.com | https://kc.mcafee.com/corporate/index?page=content&id=SB10096 | Mitigation, Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://kc.mcafee.com/corporate/index?page=content&id=SB10096 | Mitigation, Vendor Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| mcafee | advanced_threat_defense | * |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:*:*:*:*:*:*:*:*", matchCriteriaId: "94EB3C66-FF13-44B9-8604-7BA6B465CCCA", versionEndIncluding: "3.4.2.32", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "Sandbox detection evasion vulnerability in hardware appliances in McAfee (now Intel Security) Advanced Threat Defense (MATD) 3.4.2.32 and earlier allows attackers to detect the sandbox environment, then bypass proper malware detection resulting in failure to detect a malware file (false-negative) via specially crafted malware.", }, { lang: "es", value: "Vulnerabilidad de evasión de detección Sandbox en dispositivos hardware en McAfee (ahora Intel Security) Advanced Threat Defense (MATD) 3.4.2.32 y versiones anteriores permite a atacantes detectar el entorno de la caja de seguridad, y entonces eludir la adecuada detección de malware, lo que resulta en el fallo de detección de un archivo malware (falsos negativos) a través de malware especialmente manipulado.", }, ], id: "CVE-2015-8986", lastModified: "2024-11-21T02:39:36.827", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "MEDIUM", cvssData: { accessComplexity: "MEDIUM", accessVector: "NETWORK", authentication: "NONE", availabilityImpact: "NONE", baseScore: 4.3, confidentialityImpact: "NONE", integrityImpact: "PARTIAL", vectorString: "AV:N/AC:M/Au:N/C:N/I:P/A:N", version: "2.0", }, exploitabilityScore: 8.6, impactScore: 2.9, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: true, }, ], cvssMetricV30: [ { cvssData: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 5.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N", version: "3.0", }, exploitabilityScore: 1.8, impactScore: 3.6, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2017-03-14T22:59:00.353", references: [ { source: "secure@intel.com", tags: [ "Mitigation", "Vendor Advisory", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10096", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Mitigation", "Vendor Advisory", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10096", }, ], sourceIdentifier: "secure@intel.com", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "CWE-254", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
Vulnerability from fkie_nvd
Published
2019-11-13 23:15
Modified
2024-11-21 04:42
Severity ?
5.3 (Medium) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
6.5 (Medium) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
6.5 (Medium) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Summary
Information Disclosure vulnerability in McAfee Advanced Threat Defense (ATD prior to 4.8 allows remote authenticated attackers to gain access to the atduser credentials via carefully constructed GET request extracting insecurely information stored in the database.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| mcafee | advanced_threat_defense | * |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:*:*:*:*:*:*:*:*", matchCriteriaId: "0CADCFA8-E78F-460F-9753-7B51988E7B19", versionEndExcluding: "4.8", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "Information Disclosure vulnerability in McAfee Advanced Threat Defense (ATD prior to 4.8 allows remote authenticated attackers to gain access to the atduser credentials via carefully constructed GET request extracting insecurely information stored in the database.", }, { lang: "es", value: "Una vulnerabilidad de Divulgación de Información en McAfee Advanced Threat Defense (ATD) versiones anteriores a la versión 4.8, permite a atacantes autenticados remotos conseguir acceso a las credenciales de usuario mediante una petición GET cuidadosamente construida extrayendo de forma no segura la información almacenada en la base de datos.", }, ], id: "CVE-2019-3650", lastModified: "2024-11-21T04:42:17.767", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "MEDIUM", cvssData: { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "SINGLE", availabilityImpact: "NONE", baseScore: 4, confidentialityImpact: "PARTIAL", integrityImpact: "NONE", vectorString: "AV:N/AC:L/Au:S/C:P/I:N/A:N", version: "2.0", }, exploitabilityScore: 8, impactScore: 2.9, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], cvssMetricV31: [ { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, exploitabilityScore: 3.9, impactScore: 1.4, source: "trellixpsirt@trellix.com", type: "Secondary", }, { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, exploitabilityScore: 2.8, impactScore: 3.6, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2019-11-13T23:15:11.887", references: [ { source: "trellixpsirt@trellix.com", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10304", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10304", }, ], sourceIdentifier: "trellixpsirt@trellix.com", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "NVD-CWE-noinfo", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
Vulnerability from fkie_nvd
Published
2017-03-14 22:59
Modified
2024-11-21 03:26
Severity ?
Summary
SQL injection vulnerability in Intel Security Advanced Threat Defense (ATD) Linux 3.6.0 and earlier allows remote authenticated users to obtain product information via a crafted HTTP request parameter.
References
| ▼ | URL | Tags | |
|---|---|---|---|
| secure@intel.com | http://www.securityfocus.com/bid/96929 | Third Party Advisory, Vendor Advisory | |
| secure@intel.com | https://kc.mcafee.com/corporate/index?page=content&id=SB10189 | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securityfocus.com/bid/96929 | Third Party Advisory, Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://kc.mcafee.com/corporate/index?page=content&id=SB10189 | Vendor Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| mcafee | advanced_threat_defense | * |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:*:*:*:*:*:*:*:*", matchCriteriaId: "A37592DA-95F9-4127-93EB-9EA7DD14DCCB", versionEndIncluding: "3.8.0", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "SQL injection vulnerability in Intel Security Advanced Threat Defense (ATD) Linux 3.6.0 and earlier allows remote authenticated users to obtain product information via a crafted HTTP request parameter.", }, { lang: "es", value: "Vulnerabilidad de inyección SQL en Intel Security Advanced Threat Defense (ATD) Linux 3.6.0 y versiones anteriores permite a usuarios remotos autenticados obtener información de producto a través de un parámetro de petición HTTP manipulado.", }, ], id: "CVE-2017-3899", lastModified: "2024-11-21T03:26:20.490", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "MEDIUM", cvssData: { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "SINGLE", availabilityImpact: "NONE", baseScore: 4, confidentialityImpact: "PARTIAL", integrityImpact: "NONE", vectorString: "AV:N/AC:L/Au:S/C:P/I:N/A:N", version: "2.0", }, exploitabilityScore: 8, impactScore: 2.9, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], cvssMetricV30: [ { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.0", }, exploitabilityScore: 2.8, impactScore: 3.6, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2017-03-14T22:59:01.227", references: [ { source: "secure@intel.com", tags: [ "Third Party Advisory", "Vendor Advisory", ], url: "http://www.securityfocus.com/bid/96929", }, { source: "secure@intel.com", tags: [ "Vendor Advisory", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10189", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Third Party Advisory", "Vendor Advisory", ], url: "http://www.securityfocus.com/bid/96929", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Vendor Advisory", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10189", }, ], sourceIdentifier: "secure@intel.com", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "CWE-89", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
Vulnerability from fkie_nvd
Published
2015-04-08 18:59
Modified
2025-04-12 10:46
Severity ?
Summary
The web interface in McAfee Advanced Threat Defense (MATD) before 3.4.4.63 does not properly restrict access, which allows remote authenticated users to obtain sensitive information via unspecified vectors.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| mcafee | advanced_threat_defense | * |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:*:*:*:*:*:*:*:*", matchCriteriaId: "4EE18059-3158-4D28-B4A8-6907D735A159", versionEndIncluding: "3.4.4.14", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "The web interface in McAfee Advanced Threat Defense (MATD) before 3.4.4.63 does not properly restrict access, which allows remote authenticated users to obtain sensitive information via unspecified vectors.", }, { lang: "es", value: "La interfaz web en McAfee Advanced Threat Defense (MATD) anterior a 3.4.4.63 no restringe correctamente el acceso, lo que permite a usuarios remotos autenticados obtener información sensible a través de vectores no especificados.", }, ], id: "CVE-2015-3029", lastModified: "2025-04-12T10:46:40.837", metrics: { cvssMetricV2: [ { acInsufInfo: true, baseSeverity: "MEDIUM", cvssData: { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "SINGLE", availabilityImpact: "NONE", baseScore: 4, confidentialityImpact: "PARTIAL", integrityImpact: "NONE", vectorString: "AV:N/AC:L/Au:S/C:P/I:N/A:N", version: "2.0", }, exploitabilityScore: 8, impactScore: 2.9, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], }, published: "2015-04-08T18:59:08.750", references: [ { source: "cve@mitre.org", tags: [ "Vendor Advisory", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10112", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Vendor Advisory", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10112", }, ], sourceIdentifier: "cve@mitre.org", vulnStatus: "Deferred", weaknesses: [ { description: [ { lang: "en", value: "CWE-264", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
Vulnerability from fkie_nvd
Published
2017-07-12 15:29
Modified
2024-11-21 03:26
Severity ?
Summary
Privilege Escalation vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote authenticated users to gain elevated privileges via the GUI or GUI terminal commands.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| mcafee | advanced_threat_defense | 3.4 | |
| mcafee | advanced_threat_defense | 3.6 | |
| mcafee | advanced_threat_defense | 3.8 | |
| mcafee | advanced_threat_defense | 3.10 |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:3.4:*:*:*:*:*:*:*", matchCriteriaId: "AD7EA0FB-89B8-42D5-9FEB-ED7BCF95C0C9", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:3.6:*:*:*:*:*:*:*", matchCriteriaId: "BA8CE425-423E-4770-A4E8-5FCFABC23D9B", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:3.8:*:*:*:*:*:*:*", matchCriteriaId: "C3361CC0-8D59-459F-A349-22028BDEA4FE", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:3.10:*:*:*:*:*:*:*", matchCriteriaId: "2FD51315-9731-42B2-A9D2-E6E18A417658", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "Privilege Escalation vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote authenticated users to gain elevated privileges via the GUI or GUI terminal commands.", }, { lang: "es", value: "Una vulnerabilidad de la escalada de privilegios en la interfaz web en McAfee Advanced Threat Defense (ATD) versiones 3.10, 3.8, 3.6, 3.4, permite a los usuarios autenticados remotos alcanzar privilegios elevados por medio de los comandos GUI o GUI terminal.", }, ], id: "CVE-2017-4057", lastModified: "2024-11-21T03:26:26.257", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "MEDIUM", cvssData: { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "SINGLE", availabilityImpact: "PARTIAL", baseScore: 6.5, confidentialityImpact: "PARTIAL", integrityImpact: "PARTIAL", vectorString: "AV:N/AC:L/Au:S/C:P/I:P/A:P", version: "2.0", }, exploitabilityScore: 8, impactScore: 6.4, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], cvssMetricV30: [ { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, exploitabilityScore: 2.8, impactScore: 5.9, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2017-07-12T15:29:00.347", references: [ { source: "secure@intel.com", url: "http://www.securityfocus.com/bid/99561", }, { source: "secure@intel.com", tags: [ "Patch", "Vendor Advisory", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10204", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://www.securityfocus.com/bid/99561", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Patch", "Vendor Advisory", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10204", }, ], sourceIdentifier: "secure@intel.com", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "NVD-CWE-noinfo", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
Vulnerability from fkie_nvd
Published
2019-11-13 23:15
Modified
2024-11-21 04:42
Severity ?
8.4 (High) - CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:H
8.8 (High) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
8.8 (High) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
Improper Neutralization of HTTP requests in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows remote authenticated attacker to execute commands on the server remotely via carefully constructed HTTP requests.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| mcafee | advanced_threat_defense | * |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:*:*:*:*:*:*:*:*", matchCriteriaId: "0CADCFA8-E78F-460F-9753-7B51988E7B19", versionEndExcluding: "4.8", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "Improper Neutralization of HTTP requests in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows remote authenticated attacker to execute commands on the server remotely via carefully constructed HTTP requests.", }, { lang: "es", value: "Una Neutralización Inapropiada de las peticiones HTTP en McAfee Advanced Threat Defense (ATD) versiones anteriores a la versión 4.8, permite a un atacante autenticado remoto ejecutar comandos en el servidor remotamente mediante peticiones HTTP cuidadosamente construidas.", }, ], id: "CVE-2019-3660", lastModified: "2024-11-21T04:42:18.340", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "MEDIUM", cvssData: { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "SINGLE", availabilityImpact: "PARTIAL", baseScore: 6.5, confidentialityImpact: "PARTIAL", integrityImpact: "PARTIAL", vectorString: "AV:N/AC:L/Au:S/C:P/I:P/A:P", version: "2.0", }, exploitabilityScore: 8, impactScore: 6.4, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], cvssMetricV31: [ { cvssData: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.4, baseSeverity: "HIGH", confidentialityImpact: "LOW", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:H", version: "3.1", }, exploitabilityScore: 1.8, impactScore: 6, source: "trellixpsirt@trellix.com", type: "Secondary", }, { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, exploitabilityScore: 2.8, impactScore: 5.9, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2019-11-13T23:15:12.043", references: [ { source: "trellixpsirt@trellix.com", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10304", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10304", }, ], sourceIdentifier: "trellixpsirt@trellix.com", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "NVD-CWE-noinfo", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
Vulnerability from fkie_nvd
Published
2023-03-13 14:15
Modified
2024-11-21 07:38
Severity ?
6.4 (Medium) - CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
6.7 (Medium) - CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
6.7 (Medium) - CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Summary
A command injection vulnerability in Trellix Intelligent Sandbox CLI for version 5.2 and earlier, allows a local user to inject and execute arbitrary operating system commands using specially crafted strings. This vulnerability is due to insufficient validation of arguments that are passed to specific CLI command. The vulnerability allows the attack
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| mcafee | advanced_threat_defense | * | |
| trellix | intelligent_sandbox | 5.0 | |
| trellix | intelligent_sandbox | 5.2 |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:*:*:*:*:*:*:*:*", matchCriteriaId: "919A0505-167D-44E5-AF00-6C8C8742F2CF", versionEndIncluding: "4.14.2", versionStartIncluding: "4.0", vulnerable: true, }, { criteria: "cpe:2.3:a:trellix:intelligent_sandbox:5.0:*:*:*:*:*:*:*", matchCriteriaId: "9B53C628-EE8D-494C-81FA-D387BDC76972", vulnerable: true, }, { criteria: "cpe:2.3:a:trellix:intelligent_sandbox:5.2:*:*:*:*:*:*:*", matchCriteriaId: "CBE6B24B-6343-4F97-A363-6FEA58D4F8E2", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "\nA command injection vulnerability in Trellix Intelligent Sandbox CLI for version 5.2 and earlier, allows a local user to inject and execute arbitrary operating system commands using specially crafted strings. This vulnerability is due to insufficient validation of arguments that are passed to specific CLI command. The vulnerability allows the attack\n\n", }, ], id: "CVE-2023-0978", lastModified: "2024-11-21T07:38:13.350", metrics: { cvssMetricV31: [ { cvssData: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 6.4, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "HIGH", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, exploitabilityScore: 0.5, impactScore: 5.9, source: "trellixpsirt@trellix.com", type: "Secondary", }, { cvssData: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 6.7, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "HIGH", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, exploitabilityScore: 0.8, impactScore: 5.9, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2023-03-13T14:15:12.727", references: [ { source: "trellixpsirt@trellix.com", tags: [ "Vendor Advisory", ], url: "https://kcm.trellix.com/corporate/index?page=content&id=SB10397", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Vendor Advisory", ], url: "https://kcm.trellix.com/corporate/index?page=content&id=SB10397", }, ], sourceIdentifier: "trellixpsirt@trellix.com", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "CWE-77", }, ], source: "trellixpsirt@trellix.com", type: "Secondary", }, { description: [ { lang: "en", value: "CWE-77", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
Vulnerability from fkie_nvd
Published
2017-03-14 22:59
Modified
2024-11-21 02:39
Severity ?
Summary
Detection bypass vulnerability in Intel Security Advanced Threat Defense (ATD) 3.4.6 and earlier allows malware samples to bypass ATD detection via renaming the malware.
References
| ▼ | URL | Tags | |
|---|---|---|---|
| secure@intel.com | https://kc.mcafee.com/corporate/index?page=content&id=SB10127 | Mitigation, Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://kc.mcafee.com/corporate/index?page=content&id=SB10127 | Mitigation, Vendor Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| mcafee | advanced_threat_defense | * |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:*:*:*:*:*:*:*:*", matchCriteriaId: "C8D41AC9-7AE0-4AFE-8F9C-A31CA0382A2D", versionEndIncluding: "3.4.6", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "Detection bypass vulnerability in Intel Security Advanced Threat Defense (ATD) 3.4.6 and earlier allows malware samples to bypass ATD detection via renaming the malware.", }, { lang: "es", value: "Vulnerabilidad de elusión de detección en Intel Security Advanced Threat Defense (ATD) 3.4.6 y versiones anteriores permite que las muestras de malware eludan la detección ATD mediante el cambio de nombre del malware.", }, ], id: "CVE-2015-8990", lastModified: "2024-11-21T02:39:37.317", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "MEDIUM", cvssData: { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "NONE", availabilityImpact: "NONE", baseScore: 5, confidentialityImpact: "NONE", integrityImpact: "PARTIAL", vectorString: "AV:N/AC:L/Au:N/C:N/I:P/A:N", version: "2.0", }, exploitabilityScore: 10, impactScore: 2.9, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], cvssMetricV30: [ { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", version: "3.0", }, exploitabilityScore: 3.9, impactScore: 3.6, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2017-03-14T22:59:00.477", references: [ { source: "secure@intel.com", tags: [ "Mitigation", "Vendor Advisory", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10127", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Mitigation", "Vendor Advisory", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10127", }, ], sourceIdentifier: "secure@intel.com", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "CWE-254", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
Vulnerability from fkie_nvd
Published
2019-11-13 23:15
Modified
2024-11-21 04:42
Severity ?
8.8 (High) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
8.8 (High) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
8.8 (High) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
Information Disclosure vulnerability in McAfee Advanced Threat Defense (ATD prior to 4.8 allows remote authenticated attackers to gain access to ePO as an administrator via using the atduser credentials, which were too permissive.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| mcafee | advanced_threat_defense | * |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:*:*:*:*:*:*:*:*", matchCriteriaId: "0CADCFA8-E78F-460F-9753-7B51988E7B19", versionEndExcluding: "4.8", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "Information Disclosure vulnerability in McAfee Advanced Threat Defense (ATD prior to 4.8 allows remote authenticated attackers to gain access to ePO as an administrator via using the atduser credentials, which were too permissive.", }, { lang: "es", value: "Una vulnerabilidad de Divulgación de Información en McAfee Advanced Threat Defense (ATD) versiones anteriores a la versión 4.8, permite a atacantes autenticados remotos conseguir acceso a ePO como administrador mediante el uso de las credenciales de atduser, las cuales eran demasiado permisivas.", }, ], id: "CVE-2019-3651", lastModified: "2024-11-21T04:42:17.877", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "MEDIUM", cvssData: { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "SINGLE", availabilityImpact: "PARTIAL", baseScore: 6.5, confidentialityImpact: "PARTIAL", integrityImpact: "PARTIAL", vectorString: "AV:N/AC:L/Au:S/C:P/I:P/A:P", version: "2.0", }, exploitabilityScore: 8, impactScore: 6.4, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], cvssMetricV31: [ { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, exploitabilityScore: 2.8, impactScore: 5.9, source: "trellixpsirt@trellix.com", type: "Secondary", }, { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, exploitabilityScore: 2.8, impactScore: 5.9, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2019-11-13T23:15:11.950", references: [ { source: "trellixpsirt@trellix.com", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10304", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10304", }, ], sourceIdentifier: "trellixpsirt@trellix.com", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "CWE-269", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
Vulnerability from fkie_nvd
Published
2021-04-15 08:15
Modified
2024-11-21 05:36
Severity ?
4.9 (Medium) - CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L
4.3 (Medium) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
4.3 (Medium) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Summary
Exposure of Sensitive Information in the web interface in McAfee Advanced Threat Defense (ATD) prior to 4.12.2 allows remote authenticated users to view sensitive unencrypted information via a carefully crafted HTTP request parameter. The risk is partially mitigated if your ATD instances are deployed as recommended with no direct access from the Internet to them.
References
| ▼ | URL | Tags | |
|---|---|---|---|
| trellixpsirt@trellix.com | https://kc.mcafee.com/corporate/index?page=content&id=SB10336 | Broken Link, Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://kc.mcafee.com/corporate/index?page=content&id=SB10336 | Broken Link, Vendor Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| mcafee | advanced_threat_defense | * |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:*:*:*:*:*:*:*:*", matchCriteriaId: "20882C8D-3565-4189-825B-6BA28F5BE6CE", versionEndExcluding: "4.12.2", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "Exposure of Sensitive Information in the web interface in McAfee Advanced Threat Defense (ATD) prior to 4.12.2 allows remote authenticated users to view sensitive unencrypted information via a carefully crafted HTTP request parameter. The risk is partially mitigated if your ATD instances are deployed as recommended with no direct access from the Internet to them.", }, { lang: "es", value: "Una vulnerabilidad de Exposición de Información Confidencial en la interfaz web en McAfee Advanced Threat Defense (ATD) anterior a versión 4.12.2, permite a usuarios autenticados remotos visualizar información confidencial no cifrada por medio de un parámetro de petición HTTP cuidadosamente diseñado. El riesgo es parcialmente mitigado si sus instancias de ATD son implementadas como se recomienda sin acceso directo desde Internet hacia ellas", }, ], id: "CVE-2020-7270", lastModified: "2024-11-21T05:36:57.913", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "MEDIUM", cvssData: { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "SINGLE", availabilityImpact: "NONE", baseScore: 4, confidentialityImpact: "PARTIAL", integrityImpact: "NONE", vectorString: "AV:N/AC:L/Au:S/C:P/I:N/A:N", version: "2.0", }, exploitabilityScore: 8, impactScore: 2.9, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], cvssMetricV31: [ { cvssData: { attackComplexity: "LOW", attackVector: "ADJACENT_NETWORK", availabilityImpact: "LOW", baseScore: 4.9, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L", version: "3.1", }, exploitabilityScore: 1.5, impactScore: 3.4, source: "trellixpsirt@trellix.com", type: "Secondary", }, { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 4.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, exploitabilityScore: 2.8, impactScore: 1.4, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2021-04-15T08:15:14.290", references: [ { source: "trellixpsirt@trellix.com", tags: [ "Broken Link", "Vendor Advisory", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10336", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Broken Link", "Vendor Advisory", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10336", }, ], sourceIdentifier: "trellixpsirt@trellix.com", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "CWE-200", }, ], source: "trellixpsirt@trellix.com", type: "Secondary", }, { description: [ { lang: "en", value: "NVD-CWE-noinfo", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
Vulnerability from fkie_nvd
Published
2019-11-13 23:15
Modified
2024-11-21 04:42
Severity ?
5.3 (Medium) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
6.5 (Medium) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
6.5 (Medium) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Summary
Information Disclosure vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows remote authenticated attackers to gain access to hashed credentials via carefully constructed POST request extracting incorrectly recorded data from log files.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| mcafee | advanced_threat_defense | * |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:*:*:*:*:*:*:*:*", matchCriteriaId: "0CADCFA8-E78F-460F-9753-7B51988E7B19", versionEndExcluding: "4.8", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "Information Disclosure vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows remote authenticated attackers to gain access to hashed credentials via carefully constructed POST request extracting incorrectly recorded data from log files.", }, { lang: "es", value: "Una vulnerabilidad de Divulgación de Información en McAfee Advanced Threat Defense (ATD) versiones anteriores a la versión 4.8, permite a atacantes autenticados remotos conseguir acceso a credenciales del hash mediante una petición POST cuidadosamente construida extrayendo datos grabados incorrectamente desde los archivos de log.", }, ], id: "CVE-2019-3649", lastModified: "2024-11-21T04:42:17.653", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "MEDIUM", cvssData: { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "SINGLE", availabilityImpact: "NONE", baseScore: 4, confidentialityImpact: "PARTIAL", integrityImpact: "NONE", vectorString: "AV:N/AC:L/Au:S/C:P/I:N/A:N", version: "2.0", }, exploitabilityScore: 8, impactScore: 2.9, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], cvssMetricV31: [ { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, exploitabilityScore: 3.9, impactScore: 1.4, source: "trellixpsirt@trellix.com", type: "Secondary", }, { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, exploitabilityScore: 2.8, impactScore: 3.6, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2019-11-13T23:15:11.730", references: [ { source: "trellixpsirt@trellix.com", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10304", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10304", }, ], sourceIdentifier: "trellixpsirt@trellix.com", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "CWE-532", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
Vulnerability from fkie_nvd
Published
2017-07-12 15:29
Modified
2024-11-21 03:26
Severity ?
Summary
Command Injection vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote unauthenticated users / remote attackers to execute a command of their choice via a crafted HTTP request parameter.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| mcafee | advanced_threat_defense | 3.4 | |
| mcafee | advanced_threat_defense | 3.6 | |
| mcafee | advanced_threat_defense | 3.8 | |
| mcafee | advanced_threat_defense | 3.10 |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:3.4:*:*:*:*:*:*:*", matchCriteriaId: "AD7EA0FB-89B8-42D5-9FEB-ED7BCF95C0C9", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:3.6:*:*:*:*:*:*:*", matchCriteriaId: "BA8CE425-423E-4770-A4E8-5FCFABC23D9B", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:3.8:*:*:*:*:*:*:*", matchCriteriaId: "C3361CC0-8D59-459F-A349-22028BDEA4FE", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:3.10:*:*:*:*:*:*:*", matchCriteriaId: "2FD51315-9731-42B2-A9D2-E6E18A417658", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "Command Injection vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote unauthenticated users / remote attackers to execute a command of their choice via a crafted HTTP request parameter.", }, { lang: "es", value: "Vulnerabilidad de inyección de comandos en la interfaz web de McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6 y 3.4 permite a usuarios no identificados ejecutar un comando de su elección mediante un parámetro en una solicitud HTTP manipulada.", }, ], id: "CVE-2017-4053", lastModified: "2024-11-21T03:26:25.907", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "HIGH", cvssData: { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "NONE", availabilityImpact: "PARTIAL", baseScore: 7.5, confidentialityImpact: "PARTIAL", integrityImpact: "PARTIAL", vectorString: "AV:N/AC:L/Au:N/C:P/I:P/A:P", version: "2.0", }, exploitabilityScore: 10, impactScore: 6.4, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], cvssMetricV30: [ { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, exploitabilityScore: 3.9, impactScore: 5.9, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2017-07-12T15:29:00.250", references: [ { source: "secure@intel.com", url: "http://www.securityfocus.com/bid/99560", }, { source: "secure@intel.com", tags: [ "Patch", "Vendor Advisory", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10204", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://www.securityfocus.com/bid/99560", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Patch", "Vendor Advisory", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10204", }, ], sourceIdentifier: "secure@intel.com", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "CWE-78", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
Vulnerability from fkie_nvd
Published
2020-03-12 11:15
Modified
2024-11-21 05:36
Severity ?
7.7 (High) - CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:H
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
Privilege Escalation vulnerability in the command line interface in McAfee Advanced Threat Defense (ATD) 4.x prior to 4.8.2 allows local users to execute arbitrary code via improper access controls on the sudo command.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| mcafee | advanced_threat_defense | * |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:*:*:*:*:*:*:*:*", matchCriteriaId: "2CBF3159-F04B-4524-89F2-6791CBB39A24", versionEndExcluding: "4.8.2", versionStartIncluding: "4.0", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "Privilege Escalation vulnerability in the command line interface in McAfee Advanced Threat Defense (ATD) 4.x prior to 4.8.2 allows local users to execute arbitrary code via improper access controls on the sudo command.", }, { lang: "es", value: "Una vulnerabilidad de Escalada de Privilegios en la interfaz de línea de comandos en McAfee Advanced Threat Defense (ATD) versiones 4.x anteriores a 4.8.2, permite a usuarios locales ejecutar código arbitrario por medio de controles de acceso inapropiados en el comando sudo.", }, ], id: "CVE-2020-7254", lastModified: "2024-11-21T05:36:56.083", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "MEDIUM", cvssData: { accessComplexity: "LOW", accessVector: "LOCAL", authentication: "NONE", availabilityImpact: "PARTIAL", baseScore: 4.6, confidentialityImpact: "PARTIAL", integrityImpact: "PARTIAL", vectorString: "AV:L/AC:L/Au:N/C:P/I:P/A:P", version: "2.0", }, exploitabilityScore: 3.9, impactScore: 6.4, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], cvssMetricV31: [ { cvssData: { attackComplexity: "HIGH", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.7, baseSeverity: "HIGH", confidentialityImpact: "LOW", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:H", version: "3.1", }, exploitabilityScore: 1.1, impactScore: 6, source: "trellixpsirt@trellix.com", type: "Secondary", }, { cvssData: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, exploitabilityScore: 1.8, impactScore: 5.9, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2020-03-12T11:15:12.813", references: [ { source: "trellixpsirt@trellix.com", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10311", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10311", }, ], sourceIdentifier: "trellixpsirt@trellix.com", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "CWE-264", }, { lang: "en", value: "CWE-269", }, ], source: "trellixpsirt@trellix.com", type: "Secondary", }, { description: [ { lang: "en", value: "CWE-269", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
Vulnerability from fkie_nvd
Published
2015-04-08 18:59
Modified
2025-04-12 10:46
Severity ?
Summary
McAfee Advanced Threat Defense (MATD) before 3.4.4.63 allows remote authenticated users to bypass intended restrictions and change or update configuration settings via crafted parameters.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| mcafee | advanced_threat_defense | * |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:*:*:*:*:*:*:*:*", matchCriteriaId: "4EE18059-3158-4D28-B4A8-6907D735A159", versionEndIncluding: "3.4.4.14", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "McAfee Advanced Threat Defense (MATD) before 3.4.4.63 allows remote authenticated users to bypass intended restrictions and change or update configuration settings via crafted parameters.", }, { lang: "es", value: "McAfee Advanced Threat Defense (MATD) anterior a 3.4.4.63 permite a usuarios remotos autenticados evadir las restricciones y cambiar o actualizar los ajuste de configuración a través de parámetros manipulados.", }, ], id: "CVE-2015-3028", lastModified: "2025-04-12T10:46:40.837", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "MEDIUM", cvssData: { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "SINGLE", availabilityImpact: "NONE", baseScore: 5.5, confidentialityImpact: "PARTIAL", integrityImpact: "PARTIAL", vectorString: "AV:N/AC:L/Au:S/C:P/I:P/A:N", version: "2.0", }, exploitabilityScore: 8, impactScore: 4.9, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], }, published: "2015-04-08T18:59:07.673", references: [ { source: "cve@mitre.org", tags: [ "Vendor Advisory", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10112", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Vendor Advisory", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10112", }, ], sourceIdentifier: "cve@mitre.org", vulnStatus: "Deferred", weaknesses: [ { description: [ { lang: "en", value: "CWE-264", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
Vulnerability from fkie_nvd
Published
2020-06-22 09:15
Modified
2024-11-21 05:36
Severity ?
5.3 (Medium) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Summary
Improper Access Control vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.10.0 allows local users to view sensitive files via a carefully crafted HTTP request parameter.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| mcafee | advanced_threat_defense | * |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:*:*:*:*:*:*:*:*", matchCriteriaId: "AD58DF97-9BA5-4023-B5C6-DF57E5819F24", versionEndExcluding: "4.10.0", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "Improper Access Control vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.10.0 allows local users to view sensitive files via a carefully crafted HTTP request parameter.", }, { lang: "es", value: "La vulnerabilidad de Control de Acceso Inapropiado en McAfee Advanced Threat Defense (ATD) versiones anteriores a 4.10.0, permite a usuarios locales visualizar archivos confidenciales por medio de un parámetro de petición HTTP cuidadosamente diseñado", }, ], id: "CVE-2020-7262", lastModified: "2024-11-21T05:36:56.990", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "LOW", cvssData: { accessComplexity: "LOW", accessVector: "LOCAL", authentication: "NONE", availabilityImpact: "NONE", baseScore: 2.1, confidentialityImpact: "PARTIAL", integrityImpact: "NONE", vectorString: "AV:L/AC:L/Au:N/C:P/I:N/A:N", version: "2.0", }, exploitabilityScore: 3.9, impactScore: 2.9, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], cvssMetricV31: [ { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, exploitabilityScore: 3.9, impactScore: 1.4, source: "trellixpsirt@trellix.com", type: "Secondary", }, { cvssData: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 5.5, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, exploitabilityScore: 1.8, impactScore: 3.6, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2020-06-22T09:15:09.880", references: [ { source: "trellixpsirt@trellix.com", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10319", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10319", }, ], sourceIdentifier: "trellixpsirt@trellix.com", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "CWE-200", }, ], source: "trellixpsirt@trellix.com", type: "Secondary", }, { description: [ { lang: "en", value: "CWE-200", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
Vulnerability from fkie_nvd
Published
2019-11-14 00:15
Modified
2024-11-21 04:42
Severity ?
8.1 (High) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
8.8 (High) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
8.8 (High) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows remote authenticated attacker to execute database commands via carefully constructed time based payloads.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| mcafee | advanced_threat_defense | * |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:*:*:*:*:*:*:*:*", matchCriteriaId: "0CADCFA8-E78F-460F-9753-7B51988E7B19", versionEndExcluding: "4.8", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows remote authenticated attacker to execute database commands via carefully constructed time based payloads.", }, { lang: "es", value: "Una Neutralización Inapropiada de Elementos Especiales utilizados en un Comando SQL (\"SQL Injection\") en McAfee Advanced Threat Defense (ATD) versiones anteriores a la versión 4.8, permite a un atacante autenticado remoto ejecutar comandos de la base de datos por medio de cargas útiles basadas en tiempo cuidadosamente construidas.", }, ], id: "CVE-2019-3661", lastModified: "2024-11-21T04:42:18.450", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "MEDIUM", cvssData: { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "SINGLE", availabilityImpact: "PARTIAL", baseScore: 6.5, confidentialityImpact: "PARTIAL", integrityImpact: "PARTIAL", vectorString: "AV:N/AC:L/Au:S/C:P/I:P/A:P", version: "2.0", }, exploitabilityScore: 8, impactScore: 6.4, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], cvssMetricV31: [ { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 8.1, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N", version: "3.1", }, exploitabilityScore: 2.8, impactScore: 5.2, source: "trellixpsirt@trellix.com", type: "Secondary", }, { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, exploitabilityScore: 2.8, impactScore: 5.9, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2019-11-14T00:15:11.207", references: [ { source: "trellixpsirt@trellix.com", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10304", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10304", }, ], sourceIdentifier: "trellixpsirt@trellix.com", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "CWE-89", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
Vulnerability from fkie_nvd
Published
2017-07-12 15:29
Modified
2024-11-21 03:26
Severity ?
Summary
Authentication Bypass vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote unauthenticated users / remote attackers to change or update any configuration settings, or gain administrator functionality via a crafted HTTP request parameter.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| mcafee | advanced_threat_defense | 3.4 | |
| mcafee | advanced_threat_defense | 3.6 | |
| mcafee | advanced_threat_defense | 3.8 | |
| mcafee | advanced_threat_defense | 3.10 |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:3.4:*:*:*:*:*:*:*", matchCriteriaId: "AD7EA0FB-89B8-42D5-9FEB-ED7BCF95C0C9", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:3.6:*:*:*:*:*:*:*", matchCriteriaId: "BA8CE425-423E-4770-A4E8-5FCFABC23D9B", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:3.8:*:*:*:*:*:*:*", matchCriteriaId: "C3361CC0-8D59-459F-A349-22028BDEA4FE", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:3.10:*:*:*:*:*:*:*", matchCriteriaId: "2FD51315-9731-42B2-A9D2-E6E18A417658", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "Authentication Bypass vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote unauthenticated users / remote attackers to change or update any configuration settings, or gain administrator functionality via a crafted HTTP request parameter.", }, { lang: "es", value: "Una vulnerabilidad de omisión de autenticación en la interfaz web en McAfee Advanced Threat Defense (ATD) versiones 3.10, 3.8, 3.6, 3.4, permite a los usuarios no autenticados remotos y atacantes remotos cambiar o actualizar cualquier ajuste de configuración, y alcanzar la funcionalidad de administrador por medio de un parámetro request HTTP creado.", }, ], id: "CVE-2017-4052", lastModified: "2024-11-21T03:26:25.790", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "HIGH", cvssData: { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "NONE", availabilityImpact: "PARTIAL", baseScore: 7.5, confidentialityImpact: "PARTIAL", integrityImpact: "PARTIAL", vectorString: "AV:N/AC:L/Au:N/C:P/I:P/A:P", version: "2.0", }, exploitabilityScore: 10, impactScore: 6.4, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], cvssMetricV30: [ { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, exploitabilityScore: 3.9, impactScore: 5.9, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2017-07-12T15:29:00.220", references: [ { source: "secure@intel.com", url: "http://www.securityfocus.com/bid/99557", }, { source: "secure@intel.com", tags: [ "Patch", "Vendor Advisory", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10204", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://www.securityfocus.com/bid/99557", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Patch", "Vendor Advisory", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10204", }, ], sourceIdentifier: "secure@intel.com", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "CWE-306", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
Vulnerability from fkie_nvd
Published
2019-11-14 00:15
Modified
2024-11-21 04:42
Severity ?
9.8 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
Unprotected Storage of Credentials vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows local attacker to gain access to the root password via accessing sensitive files on the system. This was originally published with a CVSS rating of High, further investigation has resulted in this being updated to Critical. The root password is common across all instances of ATD prior to 4.8. See the Security bulletin for further details
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| mcafee | advanced_threat_defense | * |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:*:*:*:*:*:*:*:*", matchCriteriaId: "0CADCFA8-E78F-460F-9753-7B51988E7B19", versionEndExcluding: "4.8", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "Unprotected Storage of Credentials vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows local attacker to gain access to the root password via accessing sensitive files on the system. This was originally published with a CVSS rating of High, further investigation has resulted in this being updated to Critical. The root password is common across all instances of ATD prior to 4.8. See the Security bulletin for further details", }, { lang: "es", value: "La vulnerabilidad de almacenamiento no protegido de credenciales en McAfee Advanced Threat Defense (ATD) anterior a la versión 4.8 permite al atacante local obtener acceso a la contraseña de root mediante el acceso a archivos confidenciales en el sistema. Esto se publicó originalmente con una calificación CVSS de Alta, una investigación adicional ha dado lugar a que esto se actualice a Crítico. La contraseña de root es común en todas las instancias de ATD anteriores a la versión 4.8. Vea el boletín de seguridad para más detalles.", }, ], id: "CVE-2019-3663", lastModified: "2024-11-21T04:42:18.693", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "LOW", cvssData: { accessComplexity: "LOW", accessVector: "LOCAL", authentication: "NONE", availabilityImpact: "NONE", baseScore: 2.1, confidentialityImpact: "PARTIAL", integrityImpact: "NONE", vectorString: "AV:L/AC:L/Au:N/C:P/I:N/A:N", version: "2.0", }, exploitabilityScore: 3.9, impactScore: 2.9, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], cvssMetricV31: [ { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, exploitabilityScore: 3.9, impactScore: 5.9, source: "trellixpsirt@trellix.com", type: "Secondary", }, { cvssData: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "HIGH", baseScore: 7.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, exploitabilityScore: 1.8, impactScore: 5.9, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2019-11-14T00:15:11.363", references: [ { source: "trellixpsirt@trellix.com", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10304", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10304", }, ], sourceIdentifier: "trellixpsirt@trellix.com", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "CWE-522", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
Vulnerability from fkie_nvd
Published
2017-07-12 15:29
Modified
2024-11-21 03:26
Severity ?
Summary
Exploitation of Authentication vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote unauthenticated users / remote attackers to bypass ATD detection via loose enforcement of authentication and authorization.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| mcafee | advanced_threat_defense | 3.4 | |
| mcafee | advanced_threat_defense | 3.6 | |
| mcafee | advanced_threat_defense | 3.8 | |
| mcafee | advanced_threat_defense | 3.10 |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:3.4:*:*:*:*:*:*:*", matchCriteriaId: "AD7EA0FB-89B8-42D5-9FEB-ED7BCF95C0C9", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:3.6:*:*:*:*:*:*:*", matchCriteriaId: "BA8CE425-423E-4770-A4E8-5FCFABC23D9B", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:3.8:*:*:*:*:*:*:*", matchCriteriaId: "C3361CC0-8D59-459F-A349-22028BDEA4FE", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:3.10:*:*:*:*:*:*:*", matchCriteriaId: "2FD51315-9731-42B2-A9D2-E6E18A417658", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "Exploitation of Authentication vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote unauthenticated users / remote attackers to bypass ATD detection via loose enforcement of authentication and authorization.", }, { lang: "es", value: "Una vulnerabilidad de Explotación de Autenticación en la interfaz web en McAfee Advanced Threat Defense (ATD) versiones 3.10, 3.8, 3.6, 3.4, permite a los usuarios no autenticados remotos y a los atacantes remotos omitir la detección de ATD por medio de la ejecución flexible de la autenticación y la autorización.", }, ], id: "CVE-2017-4055", lastModified: "2024-11-21T03:26:26.130", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "MEDIUM", cvssData: { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "NONE", availabilityImpact: "NONE", baseScore: 5, confidentialityImpact: "NONE", integrityImpact: "PARTIAL", vectorString: "AV:N/AC:L/Au:N/C:N/I:P/A:N", version: "2.0", }, exploitabilityScore: 10, impactScore: 2.9, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], cvssMetricV30: [ { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", version: "3.0", }, exploitabilityScore: 3.9, impactScore: 3.6, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2017-07-12T15:29:00.313", references: [ { source: "secure@intel.com", url: "http://www.securityfocus.com/bid/99564", }, { source: "secure@intel.com", tags: [ "Patch", "Vendor Advisory", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10204", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://www.securityfocus.com/bid/99564", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Patch", "Vendor Advisory", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10204", }, ], sourceIdentifier: "secure@intel.com", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "CWE-306", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
Vulnerability from fkie_nvd
Published
2021-04-15 08:15
Modified
2024-11-21 05:36
Severity ?
4.9 (Medium) - CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L
4.3 (Medium) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
4.3 (Medium) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Summary
Exposure of Sensitive Information in the web interface in McAfee Advanced Threat Defense (ATD) prior to 4.12.2 allows remote authenticated users to view sensitive unencrypted information via a carefully crafted HTTP request parameter. The risk is partially mitigated if your ATD instances are deployed as recommended with no direct access from the Internet to them.
References
| ▼ | URL | Tags | |
|---|---|---|---|
| trellixpsirt@trellix.com | https://kc.mcafee.com/corporate/index?page=content&id=SB10336 | Broken Link, Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://kc.mcafee.com/corporate/index?page=content&id=SB10336 | Broken Link, Vendor Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| mcafee | advanced_threat_defense | * |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:*:*:*:*:*:*:*:*", matchCriteriaId: "20882C8D-3565-4189-825B-6BA28F5BE6CE", versionEndExcluding: "4.12.2", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "Exposure of Sensitive Information in the web interface in McAfee Advanced Threat Defense (ATD) prior to 4.12.2 allows remote authenticated users to view sensitive unencrypted information via a carefully crafted HTTP request parameter. The risk is partially mitigated if your ATD instances are deployed as recommended with no direct access from the Internet to them.", }, { lang: "es", value: "Una vulnerabilidad de Exposición de Información Confidencial en la interfaz web en McAfee Advanced Threat Defense (ATD) anterior a versión 4.12.2, permite a usuarios autenticados remotos visualizar información confidencial no cifrada por medio de un parámetro de petición HTTP cuidadosamente diseñado. El riesgo es parcialmente mitigado si sus instancias de ATD son implementadas como se recomienda sin acceso directo desde Internet hacia ellas", }, ], id: "CVE-2020-7269", lastModified: "2024-11-21T05:36:57.793", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "MEDIUM", cvssData: { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "SINGLE", availabilityImpact: "NONE", baseScore: 4, confidentialityImpact: "PARTIAL", integrityImpact: "NONE", vectorString: "AV:N/AC:L/Au:S/C:P/I:N/A:N", version: "2.0", }, exploitabilityScore: 8, impactScore: 2.9, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], cvssMetricV31: [ { cvssData: { attackComplexity: "LOW", attackVector: "ADJACENT_NETWORK", availabilityImpact: "LOW", baseScore: 4.9, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L", version: "3.1", }, exploitabilityScore: 1.5, impactScore: 3.4, source: "trellixpsirt@trellix.com", type: "Secondary", }, { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 4.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, exploitabilityScore: 2.8, impactScore: 1.4, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2021-04-15T08:15:12.823", references: [ { source: "trellixpsirt@trellix.com", tags: [ "Broken Link", "Vendor Advisory", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10336", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Broken Link", "Vendor Advisory", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10336", }, ], sourceIdentifier: "trellixpsirt@trellix.com", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "CWE-200", }, ], source: "trellixpsirt@trellix.com", type: "Secondary", }, { description: [ { lang: "en", value: "NVD-CWE-noinfo", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
Vulnerability from fkie_nvd
Published
2019-09-11 15:15
Modified
2024-11-21 04:42
Severity ?
5.3 (Medium) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Summary
McAfee Web Gateway (MWG) earlier than 7.8.2.13 is vulnerable to a remote attacker exploiting CVE-2019-9511, potentially leading to a denial of service. This affects the scanning proxies.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| mcafee | active_response | 1.0.0 | |
| mcafee | active_response | 1.1.0 | |
| mcafee | active_response | 2.0 | |
| mcafee | active_response | 2.0.1 | |
| mcafee | active_response | 2.1 | |
| mcafee | active_response | 2.2 | |
| mcafee | active_response | 2.3 | |
| mcafee | active_response | 2.4 | |
| mcafee | advanced_threat_defense | 4.0 | |
| mcafee | advanced_threat_defense | 4.2 | |
| mcafee | advanced_threat_defense | 4.4 | |
| mcafee | advanced_threat_defense | 4.6 | |
| mcafee | enterprise_security_manager | 10.2.0 | |
| mcafee | enterprise_security_manager | 10.3.4 | |
| mcafee | enterprise_security_manager | 10.4.0 | |
| mcafee | enterprise_security_manager | 11.0.0 | |
| mcafee | enterprise_security_manager | 11.1.0 | |
| mcafee | enterprise_security_manager | 11.1.1 | |
| mcafee | enterprise_security_manager | 11.1.2 | |
| mcafee | enterprise_security_manager | 11.1.3 | |
| mcafee | enterprise_security_manager | 11.2.0 | |
| mcafee | web_gateway | * | |
| mcafee | web_gateway | * | |
| mcafee | web_gateway | * |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:mcafee:active_response:1.0.0:*:*:*:*:*:*:*", matchCriteriaId: "D84C7BA1-9DDC-4EC1-AE5E-C037CFE8D8F7", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:active_response:1.1.0:*:*:*:*:*:*:*", matchCriteriaId: "AECD820D-0433-410A-AED5-46F2CB6BE911", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:active_response:2.0:*:*:*:*:*:*:*", matchCriteriaId: "5209C02C-3C70-4830-B0A3-C64D79DC5A6B", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:active_response:2.0.1:*:*:*:*:*:*:*", matchCriteriaId: "05BAC6A6-DF1E-4376-B9CF-05F40F745ED4", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:active_response:2.1:*:*:*:*:*:*:*", matchCriteriaId: "4C790D75-4B4B-4FDC-965D-0FB63F99797E", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:active_response:2.2:*:*:*:*:*:*:*", matchCriteriaId: "9BB28220-53E3-4BEC-9DE4-F57D641E202A", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:active_response:2.3:*:*:*:*:*:*:*", matchCriteriaId: "4E8E6BD8-3E75-424D-8B05-B09D3650565B", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:active_response:2.4:*:*:*:*:*:*:*", matchCriteriaId: "C2EACF29-7767-434F-94BD-7B2F95C69C29", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:4.0:*:*:*:*:*:*:*", matchCriteriaId: "6B77E862-D629-42CC-B8D9-53FB797C678D", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:4.2:*:*:*:*:*:*:*", matchCriteriaId: "86D15C17-0E8F-4AE8-A120-DFBF23E87FF2", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:4.4:*:*:*:*:*:*:*", matchCriteriaId: "FAFF84E7-8137-44CE-912C-5F3D4CDBEA58", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:4.6:*:*:*:*:*:*:*", matchCriteriaId: "5471CB75-40E0-4A48-A3BA-68E7623E6BDB", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:enterprise_security_manager:10.2.0:*:*:*:*:*:*:*", matchCriteriaId: "12E31BFB-141E-4B03-A771-5ED37D79F5DF", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:enterprise_security_manager:10.3.4:*:*:*:*:*:*:*", matchCriteriaId: "E8A9A863-DE4A-464D-A95D-F64876607B9E", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:enterprise_security_manager:10.4.0:*:*:*:*:*:*:*", matchCriteriaId: "C3F2E6B6-6887-43D1-A4B6-366E855E118B", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:enterprise_security_manager:11.0.0:*:*:*:*:*:*:*", matchCriteriaId: "941E2766-3FA7-46C1-A912-C25E1FBFC532", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:enterprise_security_manager:11.1.0:*:*:*:*:*:*:*", matchCriteriaId: "BA0E7A4F-FE75-4AA8-A687-5453E8044305", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:enterprise_security_manager:11.1.1:*:*:*:*:*:*:*", matchCriteriaId: "020FFFB9-5900-4BED-95AC-03E70835D59F", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:enterprise_security_manager:11.1.2:*:*:*:*:*:*:*", matchCriteriaId: "69D535AD-3802-449B-8A1B-FCD052687603", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:enterprise_security_manager:11.1.3:*:*:*:*:*:*:*", matchCriteriaId: "CC652A9C-112C-4FCF-9CB3-21AECF9CAAF4", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:enterprise_security_manager:11.2.0:*:*:*:*:*:*:*", matchCriteriaId: "34F344E3-FB8C-418F-80F4-D24971F624E6", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:web_gateway:*:*:*:*:*:*:*:*", matchCriteriaId: "765E9856-2748-4A8B-91F5-A4DB3C8C547A", versionEndExcluding: "7.7.2.24", versionStartIncluding: "7.7.2.0", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:web_gateway:*:*:*:*:*:*:*:*", matchCriteriaId: "3C824161-E723-44FC-AED9-808787FF5823", versionEndExcluding: "7.8.2.13", versionStartIncluding: "7.8.2", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:web_gateway:*:*:*:*:*:*:*:*", matchCriteriaId: "3BAFC518-9D1C-4D93-8E87-A01F4B9BF71F", versionEndExcluding: "8.2.0", versionStartIncluding: "8.0.0", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "McAfee Web Gateway (MWG) earlier than 7.8.2.13 is vulnerable to a remote attacker exploiting CVE-2019-9511, potentially leading to a denial of service. This affects the scanning proxies.", }, { lang: "es", value: "McAfee Web Gateway (MWG) versiones anteriores a 7.8.2.13 es vulnerable para un atacante remoto que explota el CVE-2019-9511, conllevando potencialmente a una denegación de servicio. Esto afecta a los proxies de escaneo.", }, ], id: "CVE-2019-3643", lastModified: "2024-11-21T04:42:17.177", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "MEDIUM", cvssData: { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "NONE", availabilityImpact: "PARTIAL", baseScore: 5, confidentialityImpact: "NONE", integrityImpact: "NONE", vectorString: "AV:N/AC:L/Au:N/C:N/I:N/A:P", version: "2.0", }, exploitabilityScore: 10, impactScore: 2.9, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], cvssMetricV31: [ { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", version: "3.1", }, exploitabilityScore: 3.9, impactScore: 1.4, source: "trellixpsirt@trellix.com", type: "Secondary", }, { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, exploitabilityScore: 3.9, impactScore: 3.6, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2019-09-11T15:15:11.670", references: [ { source: "trellixpsirt@trellix.com", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10296", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10296", }, ], sourceIdentifier: "trellixpsirt@trellix.com", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "NVD-CWE-noinfo", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
Vulnerability from fkie_nvd
Published
2016-04-08 15:59
Modified
2025-04-12 10:46
Severity ?
Summary
McAfee Advanced Threat Defense (ATD) before 3.4.8.178 might allow remote attackers to bypass malware detection by leveraging information about the parent process.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| mcafee | advanced_threat_defense | * |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:*:*:*:*:*:*:*:*", matchCriteriaId: "9C79143B-3BBC-4F35-AD17-5C6ECD07D0D4", versionEndIncluding: "3.4.4.142", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "McAfee Advanced Threat Defense (ATD) before 3.4.8.178 might allow remote attackers to bypass malware detection by leveraging information about the parent process.", }, { lang: "es", value: "McAfee Advanced Threat Defense (ATD) en versiones anteriores a 3.4.8.178 podría permitir a atacantes remotos eludir la detección de malware aprovechando información sobre el proceso padre.", }, ], id: "CVE-2016-3983", lastModified: "2025-04-12T10:46:40.837", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "MEDIUM", cvssData: { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "NONE", availabilityImpact: "NONE", baseScore: 5, confidentialityImpact: "NONE", integrityImpact: "PARTIAL", vectorString: "AV:N/AC:L/Au:N/C:N/I:P/A:N", version: "2.0", }, exploitabilityScore: 10, impactScore: 2.9, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", }, ], cvssMetricV30: [ { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", version: "3.0", }, exploitabilityScore: 3.9, impactScore: 3.6, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2016-04-08T15:59:09.167", references: [ { source: "cve@mitre.org", tags: [ "Vendor Advisory", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10149", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Vendor Advisory", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10149", }, ], sourceIdentifier: "cve@mitre.org", vulnStatus: "Deferred", weaknesses: [ { description: [ { lang: "en", value: "CWE-345", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
Vulnerability from fkie_nvd
Published
2019-11-14 00:15
Modified
2024-11-21 04:42
Severity ?
6.5 (Medium) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
6.5 (Medium) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
6.5 (Medium) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Summary
Path Traversal: '/absolute/pathname/here' vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows remote authenticated attacker to gain unintended access to files on the system via carefully constructed HTTP requests.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| mcafee | advanced_threat_defense | * |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:*:*:*:*:*:*:*:*", matchCriteriaId: "0CADCFA8-E78F-460F-9753-7B51988E7B19", versionEndExcluding: "4.8", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "Path Traversal: '/absolute/pathname/here' vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows remote authenticated attacker to gain unintended access to files on the system via carefully constructed HTTP requests.", }, { lang: "es", value: "Una vulnerabilidad de Salto de Ruta: '/absolute/pathname/here' en McAfee Advanced Threat Defense (ATD) versiones anteriores a la versión 4.8, permite a un atacante autenticado remoto conseguir acceso no deseado a los archivos sobre el sistema mediante peticiones HTTP cuidadosamente construidas.", }, ], id: "CVE-2019-3662", lastModified: "2024-11-21T04:42:18.580", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "MEDIUM", cvssData: { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "SINGLE", availabilityImpact: "NONE", baseScore: 4, confidentialityImpact: "PARTIAL", integrityImpact: "NONE", vectorString: "AV:N/AC:L/Au:S/C:P/I:N/A:N", version: "2.0", }, exploitabilityScore: 8, impactScore: 2.9, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], cvssMetricV31: [ { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, exploitabilityScore: 2.8, impactScore: 3.6, source: "trellixpsirt@trellix.com", type: "Secondary", }, { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, exploitabilityScore: 2.8, impactScore: 3.6, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2019-11-14T00:15:11.267", references: [ { source: "trellixpsirt@trellix.com", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10304", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10304", }, ], sourceIdentifier: "trellixpsirt@trellix.com", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "CWE-22", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
Vulnerability from fkie_nvd
Published
2017-07-12 15:29
Modified
2024-11-21 03:26
Severity ?
Summary
Command Injection vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote authenticated users to execute a command of their choice via a crafted HTTP request parameter.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| mcafee | advanced_threat_defense | 3.4 | |
| mcafee | advanced_threat_defense | 3.6 | |
| mcafee | advanced_threat_defense | 3.8 | |
| mcafee | advanced_threat_defense | 3.10 |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:3.4:*:*:*:*:*:*:*", matchCriteriaId: "AD7EA0FB-89B8-42D5-9FEB-ED7BCF95C0C9", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:3.6:*:*:*:*:*:*:*", matchCriteriaId: "BA8CE425-423E-4770-A4E8-5FCFABC23D9B", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:3.8:*:*:*:*:*:*:*", matchCriteriaId: "C3361CC0-8D59-459F-A349-22028BDEA4FE", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:3.10:*:*:*:*:*:*:*", matchCriteriaId: "2FD51315-9731-42B2-A9D2-E6E18A417658", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "Command Injection vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote authenticated users to execute a command of their choice via a crafted HTTP request parameter.", }, { lang: "es", value: "Vulnerabilidad de inyección de comandos en la interfaz web de McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6 y 3.4 permite a usuarios no identificados ejecutar un comando de su elección mediante un parámetro en una solicitud HTTP manipulada.", }, ], id: "CVE-2017-4054", lastModified: "2024-11-21T03:26:26.017", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "MEDIUM", cvssData: { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "SINGLE", availabilityImpact: "PARTIAL", baseScore: 6.5, confidentialityImpact: "PARTIAL", integrityImpact: "PARTIAL", vectorString: "AV:N/AC:L/Au:S/C:P/I:P/A:P", version: "2.0", }, exploitabilityScore: 8, impactScore: 6.4, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], cvssMetricV30: [ { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 8.8, baseSeverity: "HIGH", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.0", }, exploitabilityScore: 2.8, impactScore: 5.9, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2017-07-12T15:29:00.283", references: [ { source: "secure@intel.com", url: "http://www.securityfocus.com/bid/99559", }, { source: "secure@intel.com", tags: [ "Patch", "Vendor Advisory", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10204", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "http://www.securityfocus.com/bid/99559", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Patch", "Vendor Advisory", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10204", }, ], sourceIdentifier: "secure@intel.com", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "CWE-77", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
Vulnerability from fkie_nvd
Published
2015-04-08 18:59
Modified
2025-04-12 10:46
Severity ?
Summary
The web interface in McAfee Advanced Threat Defense (MATD) before 3.4.4.63 allows remote authenticated users to obtain sensitive configuration information via unspecified vectors.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| mcafee | advanced_threat_defense | * |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:*:*:*:*:*:*:*:*", matchCriteriaId: "4EE18059-3158-4D28-B4A8-6907D735A159", versionEndIncluding: "3.4.4.14", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "The web interface in McAfee Advanced Threat Defense (MATD) before 3.4.4.63 allows remote authenticated users to obtain sensitive configuration information via unspecified vectors.", }, { lang: "es", value: "La interfaz web en McAfee Advanced Threat Defense (MATD) anterior a 3.4.4.63 permite a usuarios remotos autenticados obtener información sensible de configuraciones a través de vectores no especificados.", }, ], id: "CVE-2015-3030", lastModified: "2025-04-12T10:46:40.837", metrics: { cvssMetricV2: [ { acInsufInfo: true, baseSeverity: "MEDIUM", cvssData: { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "SINGLE", availabilityImpact: "NONE", baseScore: 4, confidentialityImpact: "PARTIAL", integrityImpact: "NONE", vectorString: "AV:N/AC:L/Au:S/C:P/I:N/A:N", version: "2.0", }, exploitabilityScore: 8, impactScore: 2.9, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], }, published: "2015-04-08T18:59:09.780", references: [ { source: "cve@mitre.org", tags: [ "Vendor Advisory", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10112", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Vendor Advisory", ], url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10112", }, ], sourceIdentifier: "cve@mitre.org", vulnStatus: "Deferred", weaknesses: [ { description: [ { lang: "en", value: "CWE-200", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
Vulnerability from fkie_nvd
Published
2019-09-11 15:15
Modified
2024-11-21 04:42
Severity ?
7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
7.5 (High) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Summary
McAfee Web Gateway (MWG) earlier than 7.8.2.13 is vulnerable to a remote attacker exploiting CVE-2019-9517, potentially leading to a denial of service. This affects the scanning proxies.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| mcafee | active_response | 1.0.0 | |
| mcafee | active_response | 1.1.0 | |
| mcafee | active_response | 2.0 | |
| mcafee | active_response | 2.0.1 | |
| mcafee | active_response | 2.1 | |
| mcafee | active_response | 2.2 | |
| mcafee | active_response | 2.3 | |
| mcafee | active_response | 2.4 | |
| mcafee | advanced_threat_defense | 4.0 | |
| mcafee | advanced_threat_defense | 4.2 | |
| mcafee | advanced_threat_defense | 4.4 | |
| mcafee | advanced_threat_defense | 4.6 | |
| mcafee | enterprise_security_manager | 10.2.0 | |
| mcafee | enterprise_security_manager | 10.3.4 | |
| mcafee | enterprise_security_manager | 10.4.0 | |
| mcafee | enterprise_security_manager | 11.0.0 | |
| mcafee | enterprise_security_manager | 11.1.0 | |
| mcafee | enterprise_security_manager | 11.1.1 | |
| mcafee | enterprise_security_manager | 11.1.2 | |
| mcafee | enterprise_security_manager | 11.1.3 | |
| mcafee | enterprise_security_manager | 11.2.0 | |
| mcafee | web_gateway | * | |
| mcafee | web_gateway | * | |
| mcafee | web_gateway | * |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:mcafee:active_response:1.0.0:*:*:*:*:*:*:*", matchCriteriaId: "D84C7BA1-9DDC-4EC1-AE5E-C037CFE8D8F7", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:active_response:1.1.0:*:*:*:*:*:*:*", matchCriteriaId: "AECD820D-0433-410A-AED5-46F2CB6BE911", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:active_response:2.0:*:*:*:*:*:*:*", matchCriteriaId: "5209C02C-3C70-4830-B0A3-C64D79DC5A6B", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:active_response:2.0.1:*:*:*:*:*:*:*", matchCriteriaId: "05BAC6A6-DF1E-4376-B9CF-05F40F745ED4", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:active_response:2.1:*:*:*:*:*:*:*", matchCriteriaId: "4C790D75-4B4B-4FDC-965D-0FB63F99797E", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:active_response:2.2:*:*:*:*:*:*:*", matchCriteriaId: "9BB28220-53E3-4BEC-9DE4-F57D641E202A", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:active_response:2.3:*:*:*:*:*:*:*", matchCriteriaId: "4E8E6BD8-3E75-424D-8B05-B09D3650565B", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:active_response:2.4:*:*:*:*:*:*:*", matchCriteriaId: "C2EACF29-7767-434F-94BD-7B2F95C69C29", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:4.0:*:*:*:*:*:*:*", matchCriteriaId: "6B77E862-D629-42CC-B8D9-53FB797C678D", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:4.2:*:*:*:*:*:*:*", matchCriteriaId: "86D15C17-0E8F-4AE8-A120-DFBF23E87FF2", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:4.4:*:*:*:*:*:*:*", matchCriteriaId: "FAFF84E7-8137-44CE-912C-5F3D4CDBEA58", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:advanced_threat_defense:4.6:*:*:*:*:*:*:*", matchCriteriaId: "5471CB75-40E0-4A48-A3BA-68E7623E6BDB", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:enterprise_security_manager:10.2.0:*:*:*:*:*:*:*", matchCriteriaId: "12E31BFB-141E-4B03-A771-5ED37D79F5DF", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:enterprise_security_manager:10.3.4:*:*:*:*:*:*:*", matchCriteriaId: "E8A9A863-DE4A-464D-A95D-F64876607B9E", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:enterprise_security_manager:10.4.0:*:*:*:*:*:*:*", matchCriteriaId: "C3F2E6B6-6887-43D1-A4B6-366E855E118B", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:enterprise_security_manager:11.0.0:*:*:*:*:*:*:*", matchCriteriaId: "941E2766-3FA7-46C1-A912-C25E1FBFC532", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:enterprise_security_manager:11.1.0:*:*:*:*:*:*:*", matchCriteriaId: "BA0E7A4F-FE75-4AA8-A687-5453E8044305", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:enterprise_security_manager:11.1.1:*:*:*:*:*:*:*", matchCriteriaId: "020FFFB9-5900-4BED-95AC-03E70835D59F", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:enterprise_security_manager:11.1.2:*:*:*:*:*:*:*", matchCriteriaId: "69D535AD-3802-449B-8A1B-FCD052687603", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:enterprise_security_manager:11.1.3:*:*:*:*:*:*:*", matchCriteriaId: "CC652A9C-112C-4FCF-9CB3-21AECF9CAAF4", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:enterprise_security_manager:11.2.0:*:*:*:*:*:*:*", matchCriteriaId: "34F344E3-FB8C-418F-80F4-D24971F624E6", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:web_gateway:*:*:*:*:*:*:*:*", matchCriteriaId: "765E9856-2748-4A8B-91F5-A4DB3C8C547A", versionEndExcluding: "7.7.2.24", versionStartIncluding: "7.7.2.0", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:web_gateway:*:*:*:*:*:*:*:*", matchCriteriaId: "3C824161-E723-44FC-AED9-808787FF5823", versionEndExcluding: "7.8.2.13", versionStartIncluding: "7.8.2", vulnerable: true, }, { criteria: "cpe:2.3:a:mcafee:web_gateway:*:*:*:*:*:*:*:*", matchCriteriaId: "3BAFC518-9D1C-4D93-8E87-A01F4B9BF71F", versionEndExcluding: "8.2.0", versionStartIncluding: "8.0.0", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "McAfee Web Gateway (MWG) earlier than 7.8.2.13 is vulnerable to a remote attacker exploiting CVE-2019-9517, potentially leading to a denial of service. This affects the scanning proxies.", }, { lang: "es", value: "McAfee Web Gateway (MWG) versiones anteriores a 7.8.2.13, es vulnerable para un atacante remoto que explota el CVE-2019-9517, conllevando potencialmente a una denegación de servicio. Esto afecta los proxies de escaneo.", }, ], id: "CVE-2019-3644", lastModified: "2024-11-21T04:42:17.290", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "MEDIUM", cvssData: { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "NONE", availabilityImpact: "PARTIAL", baseScore: 5, confidentialityImpact: "NONE", integrityImpact: "NONE", vectorString: "AV:N/AC:L/Au:N/C:N/I:N/A:P", version: "2.0", }, exploitabilityScore: 10, impactScore: 2.9, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], cvssMetricV31: [ { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, exploitabilityScore: 3.9, impactScore: 3.6, source: "trellixpsirt@trellix.com", type: "Secondary", }, { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, exploitabilityScore: 3.9, impactScore: 3.6, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2019-09-11T15:15:11.763", references: [ { source: "trellixpsirt@trellix.com", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10296", }, { source: "af854a3a-2127-422b-91ae-364da2661108", url: "https://kc.mcafee.com/corporate/index?page=content&id=SB10296", }, ], sourceIdentifier: "trellixpsirt@trellix.com", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "NVD-CWE-noinfo", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }