Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mcafee advanced threat defense vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2017-4052
Authentication Bypass vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote unauthenticated users / remote malicious users to change or update any configuration settings, or gain administrator functionality via a crafted HTTP...
Mcafee Advanced Threat Defense 3.6
Mcafee Advanced Threat Defense 3.4
Mcafee Advanced Threat Defense 3.10
Mcafee Advanced Threat Defense 3.8
578
VMScore
CVE-2017-4054
Command Injection vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote authenticated users to execute a command of their choice via a crafted HTTP request parameter.
Mcafee Advanced Threat Defense 3.10
Mcafee Advanced Threat Defense 3.8
Mcafee Advanced Threat Defense 3.6
Mcafee Advanced Threat Defense 3.4
445
VMScore
CVE-2017-4055
Exploitation of Authentication vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote unauthenticated users / remote malicious users to bypass ATD detection via loose enforcement of authentication and authorization.
Mcafee Advanced Threat Defense 3.8
Mcafee Advanced Threat Defense 3.10
Mcafee Advanced Threat Defense 3.6
Mcafee Advanced Threat Defense 3.4
578
VMScore
CVE-2017-4057
Privilege Escalation vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote authenticated users to gain elevated privileges via the GUI or GUI terminal commands.
Mcafee Advanced Threat Defense 3.8
Mcafee Advanced Threat Defense 3.6
Mcafee Advanced Threat Defense 3.4
Mcafee Advanced Threat Defense 3.10
668
VMScore
CVE-2017-4053
Command Injection vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote unauthenticated users / remote malicious users to execute a command of their choice via a crafted HTTP request parameter.
Mcafee Advanced Threat Defense 3.4
Mcafee Advanced Threat Defense 3.10
Mcafee Advanced Threat Defense 3.8
Mcafee Advanced Threat Defense 3.6
445
VMScore
CVE-2016-3983
McAfee Advanced Threat Defense (ATD) prior to 3.4.8.178 might allow remote malicious users to bypass malware detection by leveraging information about the parent process.
Mcafee Advanced Threat Defense
356
VMScore
CVE-2019-3650
Information Disclosure vulnerability in McAfee Advanced Threat Defense (ATD before 4.8 allows remote authenticated malicious users to gain access to the atduser credentials via carefully constructed GET request extracting insecurely information stored in the database.
Mcafee Advanced Threat Defense
578
VMScore
CVE-2019-3651
Information Disclosure vulnerability in McAfee Advanced Threat Defense (ATD before 4.8 allows remote authenticated malicious users to gain access to ePO as an administrator via using the atduser credentials, which were too permissive.
Mcafee Advanced Threat Defense
578
VMScore
CVE-2019-3660
Improper Neutralization of HTTP requests in McAfee Advanced Threat Defense (ATD) before 4.8 allows remote authenticated malicious user to execute commands on the server remotely via carefully constructed HTTP requests.
Mcafee Advanced Threat Defense
578
VMScore
CVE-2019-3661
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in McAfee Advanced Threat Defense (ATD) before 4.8 allows remote authenticated malicious user to execute database commands via carefully constructed time based payloads.
Mcafee Advanced Threat Defense
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »