Advanced Threat Defense Security Vulnerabilities and Issues — Advanced Threat Defense CVE List

Lucene search

McafeeAdvanced Threat Defense

5 matches found

CVE•added 2017/07/12 3:29 p.m.•39 views

CVE-2017-4057

Privilege Escalation vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote authenticated users to gain elevated privileges via the GUI or GUI terminal commands.

8.8CVSS8.4AI score0.00952EPSS

CVE•added 2017/07/12 3:29 p.m.•38 views

CVE-2017-4054

Command Injection vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote authenticated users to execute a command of their choice via a crafted HTTP request parameter.

8.8CVSS8.6AI score0.0429EPSS

CVE•added 2019/11/13 11:15 p.m.•37 views

CVE-2019-3660

Improper Neutralization of HTTP requests in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows remote authenticated attacker to execute commands on the server remotely via carefully constructed HTTP requests.

8.8CVSS8.7AI score0.00728EPSS

CVE•added 2019/11/14 12:15 a.m.•36 views

CVE-2019-3661

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows remote authenticated attacker to execute database commands via carefully constructed time based payloads.

8.8CVSS8.7AI score0.00182EPSS

CVE•added 2019/11/13 11:15 p.m.•35 views

CVE-2019-3651

Information Disclosure vulnerability in McAfee Advanced Threat Defense (ATD prior to 4.8 allows remote authenticated attackers to gain access to ePO as an administrator via using the atduser credentials, which were too permissive.

8.8CVSS8.5AI score0.00487EPSS