Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mcafee advanced threat defense vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv2
CVE-2017-4054
Command Injection vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote authenticated users to execute a command of their choice via a crafted HTTP request parameter.
Mcafee Advanced Threat Defense 3.10
Mcafee Advanced Threat Defense 3.8
Mcafee Advanced Threat Defense 3.6
Mcafee Advanced Threat Defense 3.4
7.5
CVSSv2
CVE-2017-4052
Authentication Bypass vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote unauthenticated users / remote malicious users to change or update any configuration settings, or gain administrator functionality via a crafted HTTP...
Mcafee Advanced Threat Defense 3.6
Mcafee Advanced Threat Defense 3.4
Mcafee Advanced Threat Defense 3.10
Mcafee Advanced Threat Defense 3.8
7.5
CVSSv2
CVE-2017-4053
Command Injection vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote unauthenticated users / remote malicious users to execute a command of their choice via a crafted HTTP request parameter.
Mcafee Advanced Threat Defense 3.4
Mcafee Advanced Threat Defense 3.10
Mcafee Advanced Threat Defense 3.8
Mcafee Advanced Threat Defense 3.6
5
CVSSv2
CVE-2017-4055
Exploitation of Authentication vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote unauthenticated users / remote malicious users to bypass ATD detection via loose enforcement of authentication and authorization.
Mcafee Advanced Threat Defense 3.8
Mcafee Advanced Threat Defense 3.10
Mcafee Advanced Threat Defense 3.6
Mcafee Advanced Threat Defense 3.4
6.5
CVSSv2
CVE-2017-4057
Privilege Escalation vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote authenticated users to gain elevated privileges via the GUI or GUI terminal commands.
Mcafee Advanced Threat Defense 3.8
Mcafee Advanced Threat Defense 3.6
Mcafee Advanced Threat Defense 3.4
Mcafee Advanced Threat Defense 3.10
4
CVSSv2
CVE-2017-3899
SQL injection vulnerability in Intel Security Advanced Threat Defense (ATD) Linux 3.6.0 and previous versions allows remote authenticated users to obtain product information via a crafted HTTP request parameter.
Mcafee Advanced Threat Defense
5
CVSSv2
CVE-2016-3983
McAfee Advanced Threat Defense (ATD) prior to 3.4.8.178 might allow remote malicious users to bypass malware detection by leveraging information about the parent process.
Mcafee Advanced Threat Defense
4
CVSSv2
CVE-2019-3650
Information Disclosure vulnerability in McAfee Advanced Threat Defense (ATD before 4.8 allows remote authenticated malicious users to gain access to the atduser credentials via carefully constructed GET request extracting insecurely information stored in the database.
Mcafee Advanced Threat Defense
6.5
CVSSv2
CVE-2019-3651
Information Disclosure vulnerability in McAfee Advanced Threat Defense (ATD before 4.8 allows remote authenticated malicious users to gain access to ePO as an administrator via using the atduser credentials, which were too permissive.
Mcafee Advanced Threat Defense
4
CVSSv2
CVE-2019-3662
Path Traversal: '/absolute/pathname/here' vulnerability in McAfee Advanced Threat Defense (ATD) before 4.8 allows remote authenticated malicious user to gain unintended access to files on the system via carefully constructed HTTP requests.
Mcafee Advanced Threat Defense
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581
reflected XSS
CVE-2024-26925
CVE-2024-27956
LFI
CVE-2024-3607
CVE-2024-3107
CVE-2024-3295
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »