Mcafee Advanced Threat Defense vulnerabilities

26 known vulnerabilities affecting mcafee/advanced_threat_defense.

Total CVEs
26
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH12MEDIUM12

Vulnerabilities

Page 2 of 2
CVE-2017-3899MEDIUMCVSS 6.5≤ 3.8.02017-03-14
CVE-2017-3899 [MEDIUM] CWE-89 CVE-2017-3899: SQL injection vulnerability in Intel Security Advanced Threat Defense (ATD) Linux 3.6.0 and earlier SQL injection vulnerability in Intel Security Advanced Threat Defense (ATD) Linux 3.6.0 and earlier allows remote authenticated users to obtain product information via a crafted HTTP request parameter.
nvd
CVE-2015-8986MEDIUMCVSS 5.5≤ 3.4.2.322017-03-14
CVE-2015-8986 [MEDIUM] CWE-254 CVE-2015-8986: Sandbox detection evasion vulnerability in hardware appliances in McAfee (now Intel Security) Advanc Sandbox detection evasion vulnerability in hardware appliances in McAfee (now Intel Security) Advanced Threat Defense (MATD) 3.4.2.32 and earlier allows attackers to detect the sandbox environment, then bypass proper malware detection resulting in failure to detect a malware file (false-negative) via specially crafted malware.
nvd
CVE-2016-3983HIGHCVSS 7.5≤ 3.4.4.1422016-04-08
CVE-2016-3983 [HIGH] CWE-345 CVE-2016-3983: McAfee Advanced Threat Defense (ATD) before 3.4.8.178 might allow remote attackers to bypass malware McAfee Advanced Threat Defense (ATD) before 3.4.8.178 might allow remote attackers to bypass malware detection by leveraging information about the parent process.
nvd
CVE-2015-3028MEDIUMCVSS 5.5≤ 3.4.4.142015-04-08
CVE-2015-3028 [MEDIUM] CWE-264 CVE-2015-3028: McAfee Advanced Threat Defense (MATD) before 3.4.4.63 allows remote authenticated users to bypass in McAfee Advanced Threat Defense (MATD) before 3.4.4.63 allows remote authenticated users to bypass intended restrictions and change or update configuration settings via crafted parameters.
nvd
CVE-2015-3029MEDIUMCVSS 4.0≤ 3.4.4.142015-04-08
CVE-2015-3029 [MEDIUM] CWE-264 CVE-2015-3029: The web interface in McAfee Advanced Threat Defense (MATD) before 3.4.4.63 does not properly restric The web interface in McAfee Advanced Threat Defense (MATD) before 3.4.4.63 does not properly restrict access, which allows remote authenticated users to obtain sensitive information via unspecified vectors.
nvd
CVE-2015-3030MEDIUMCVSS 4.0≤ 3.4.4.142015-04-08
CVE-2015-3030 [MEDIUM] CWE-200 CVE-2015-3030: The web interface in McAfee Advanced Threat Defense (MATD) before 3.4.4.63 allows remote authenticat The web interface in McAfee Advanced Threat Defense (MATD) before 3.4.4.63 allows remote authenticated users to obtain sensitive configuration information via unspecified vectors.
nvd
← Previous2 / 2