Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

System Defense Utility Security Vulnerabilities

cve
cve

CVE-2015-8986

Sandbox detection evasion vulnerability in hardware appliances in McAfee (now Intel Security) Advanced Threat Defense (MATD) 3.4.2.32 and earlier allows attackers to detect the sandbox environment, then bypass proper malware detection resulting in failure to detect a malware file (false-negative) v...

5.5CVSS

5.5AI Score

0.001EPSS

2017-03-14 10:59 PM
24
cve
cve

CVE-2015-8990

Detection bypass vulnerability in Intel Security Advanced Threat Defense (ATD) 3.4.6 and earlier allows malware samples to bypass ATD detection via renaming the malware.

7.5CVSS

7.4AI Score

0.001EPSS

2017-03-14 10:59 PM
27
cve
cve

CVE-2017-4052

Authentication Bypass vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote unauthenticated users / remote attackers to change or update any configuration settings, or gain administrator functionality via a crafted HTTP request parameter.

9.8CVSS

9.3AI Score

0.004EPSS

2017-07-12 03:29 PM
27
cve
cve

CVE-2017-4053

Command Injection vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote unauthenticated users / remote attackers to execute a command of their choice via a crafted HTTP request parameter.

9.8CVSS

9.6AI Score

0.003EPSS

2017-07-12 03:29 PM
31
cve
cve

CVE-2017-4054

Command Injection vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote authenticated users to execute a command of their choice via a crafted HTTP request parameter.

8.8CVSS

8.6AI Score

0.001EPSS

2017-07-12 03:29 PM
26
cve
cve

CVE-2017-4055

Exploitation of Authentication vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote unauthenticated users / remote attackers to bypass ATD detection via loose enforcement of authentication and authorization.

7.5CVSS

7.8AI Score

0.002EPSS

2017-07-12 03:29 PM
30
cve
cve

CVE-2017-4057

Privilege Escalation vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote authenticated users to gain elevated privileges via the GUI or GUI terminal commands.

8.8CVSS

8.4AI Score

0.002EPSS

2017-07-12 03:29 PM
26
cve
cve

CVE-2018-3705

Improper directory permissions in the installer for the Intel(R) System Defense Utility (all versions) may allow authenticated users to potentially enable a denial of service via local access.

5.5CVSS

5.2AI Score

0.0004EPSS

2018-12-14 12:29 AM
47