Information disclosure

2019-11-1323:15:00

PRIOn knowledge base

www.prio-n.com

6.1 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

56.0%

JSON

Information Disclosure vulnerability in McAfee Advanced Threat Defense (ATD prior to 4.8 allows remote authenticated attackers to gain access to the atduser credentials via carefully constructed GET request extracting insecurely information stored in the database.

CPENameOperatorVersion
advanced_threat_defenselt4.8

CPE	Name	Operator	Version
	advanced_threat_defense	lt	4.8

References

kc.mcafee.com/corporate/index?page=content&id=SB10304