CVE-2015-8990 — Advanced Threat Defense vulnerability

CWE-2543 documents3 sources

Severity

7.5HIGHNVD

EPSS

0.3%

top 51.13%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Mcafee Advanced Threat Defense Intel Advanced Threat Defense

Timeline

PublishedMar 14

Latest updateMay 17

Description

Detection bypass vulnerability in Intel Security Advanced Threat Defense (ATD) 3.4.6 and earlier allows malware samples to bypass ATD detection via renaming the malware.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages2 packages

▶CVEListV5intel/advanced_threat_defense3.4.6 and earlier

▶NVDmcafee/advanced_threat_defense3.4.6

🔴Vulnerability Details

GHSA

GHSA-mgmj-2435-xhq3: Detection bypass vulnerability in Intel Security Advanced Threat Defense (ATD) 3↗2022-05-17

▶

CVEList

CVE-2015-8990: Detection bypass vulnerability in Intel Security Advanced Threat Defense (ATD) 3↗2017-03-14

▶