Mcafee Advanced Threat Defense vulnerabilities
26 known vulnerabilities affecting mcafee/advanced_threat_defense.
Total CVEs
26
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH12MEDIUM12
Vulnerabilities
Page 2 of 2
CVE-2020-7262P4MEDIUMCVSS 5.5fixed in 4.10.02020-06-22
CVE-2020-7262 [MEDIUM] CWE-200 CVE-2020-7262: Improper Access Control vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.10.0 allows
Improper Access Control vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.10.0 allows local users to view sensitive files via a carefully crafted HTTP request parameter.
nvd
CVE-2020-7270P4MEDIUMCVSS 4.3fixed in 4.12.22021-04-15
CVE-2020-7270 [MEDIUM] CWE-200 CVE-2020-7270: Exposure of Sensitive Information in the web interface in McAfee Advanced Threat Defense (ATD) prior
Exposure of Sensitive Information in the web interface in McAfee Advanced Threat Defense (ATD) prior to 4.12.2 allows remote authenticated users to view sensitive unencrypted information via a carefully crafted HTTP request parameter. The risk is partially mitigated if your ATD instances are deployed as recommended with no direct access from the Inter
nvd
CVE-2020-7269P4MEDIUMCVSS 4.3fixed in 4.12.22021-04-15
CVE-2020-7269 [MEDIUM] CWE-200 CVE-2020-7269: Exposure of Sensitive Information in the web interface in McAfee Advanced Threat Defense (ATD) prior
Exposure of Sensitive Information in the web interface in McAfee Advanced Threat Defense (ATD) prior to 4.12.2 allows remote authenticated users to view sensitive unencrypted information via a carefully crafted HTTP request parameter. The risk is partially mitigated if your ATD instances are deployed as recommended with no direct access from the Inter
nvd
CVE-2015-8986P4MEDIUMCVSS 5.5≤ 3.4.2.322017-03-14
CVE-2015-8986 [MEDIUM] CWE-254 CVE-2015-8986: Sandbox detection evasion vulnerability in hardware appliances in McAfee (now Intel Security) Advanc
Sandbox detection evasion vulnerability in hardware appliances in McAfee (now Intel Security) Advanced Threat Defense (MATD) 3.4.2.32 and earlier allows attackers to detect the sandbox environment, then bypass proper malware detection resulting in failure to detect a malware file (false-negative) via specially crafted malware.
nvd
CVE-2015-3029P4MEDIUMCVSS 4.0≤ 3.4.4.142015-04-08
CVE-2015-3029 [MEDIUM] CWE-264 CVE-2015-3029: The web interface in McAfee Advanced Threat Defense (MATD) before 3.4.4.63 does not properly restric
The web interface in McAfee Advanced Threat Defense (MATD) before 3.4.4.63 does not properly restrict access, which allows remote authenticated users to obtain sensitive information via unspecified vectors.
nvd
CVE-2015-3030P4MEDIUMCVSS 4.0≤ 3.4.4.142015-04-08
CVE-2015-3030 [MEDIUM] CWE-200 CVE-2015-3030: The web interface in McAfee Advanced Threat Defense (MATD) before 3.4.4.63 allows remote authenticat
The web interface in McAfee Advanced Threat Defense (MATD) before 3.4.4.63 allows remote authenticated users to obtain sensitive configuration information via unspecified vectors.
nvd
← Previous2 / 2