CPE-011ACCBA-7BC2-4675-85DF-E87849108AED Détail

CPE Details

Mcafee Advanced Threat Defense 4.0

Vendor

mcafee

Product

advanced_threat_defense

Version

4.0

Created

2019-10-04
14h25 +00:00

Modifié

2019-10-04
14h25 +00:00

Liens officiels

CPE NVD

Alerte pour un CPE

Restez informé de toutes modifications pour un CPE spécifique.

Gestion des notifications

Liste des Notifications

Alerte pour un CPE

Restez informé de toutes modifications pour un CPE spécifique.

Paramètres

Vous pouvez spécifier un titre qui sera récupéré dans les alertes qui seront envoyées.

CPE ID

Planifications

Mois

Prochaine exécution calculée

Jour

Jour de la semaine

Heure

Minute

Date de création

Dernière exécution

Prochaine exécution

Fonctionnalité nécessitant une connexion

Cette fonctionnalité qui vous permet de recevoir des alertes, n'est active que lorsque vous êtes connecté à votre compte.

CPE Name: cpe:2.3:a:mcafee:advanced_threat_defense:4.0:::::::*

Informations

Vendor

mcafee

Product

advanced_threat_defense

Version

4.0

Related CVE

Open and find in CVE List

CVE ID	Publié	Description	Score	Gravité
CVE-2023-0978	2023-03-13 13h29 +00:00	A command injection vulnerability in Trellix Intelligent Sandbox CLI for version 5.2 and earlier, allows a local user to inject and execute arbitrary operating system commands using specially crafted strings. This vulnerability is due to insufficient validation of arguments that are passed to specific CLI command. The vulnerability allows the attack	6.7	Moyen
CVE-2020-7270	2021-04-15 06h05 +00:00	Exposure of Sensitive Information in the web interface in McAfee Advanced Threat Defense (ATD) prior to 4.12.2 allows remote authenticated users to view sensitive unencrypted information via a carefully crafted HTTP request parameter. The risk is partially mitigated if your ATD instances are deployed as recommended with no direct access from the Internet to them.	4.9	Moyen
CVE-2020-7269	2021-04-15 06h00 +00:00	Exposure of Sensitive Information in the web interface in McAfee Advanced Threat Defense (ATD) prior to 4.12.2 allows remote authenticated users to view sensitive unencrypted information via a carefully crafted HTTP request parameter. The risk is partially mitigated if your ATD instances are deployed as recommended with no direct access from the Internet to them.	4.9	Moyen
CVE-2020-7262	2020-06-22 08h35 +00:00	Improper Access Control vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.10.0 allows local users to view sensitive files via a carefully crafted HTTP request parameter.	5.5	Moyen
CVE-2020-7254	2020-03-12 11h00 +00:00	Privilege Escalation vulnerability in the command line interface in McAfee Advanced Threat Defense (ATD) 4.x prior to 4.8.2 allows local users to execute arbitrary code via improper access controls on the sudo command.	7.8	Haute
CVE-2019-3663	2019-11-13 22h50 +00:00	Unprotected Storage of Credentials vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows local attacker to gain access to the root password via accessing sensitive files on the system. This was originally published with a CVSS rating of High, further investigation has resulted in this being updated to Critical. The root password is common across all instances of ATD prior to 4.8. See the Security bulletin for further details	9.8	Critique
CVE-2019-3662	2019-11-13 22h45 +00:00	Path Traversal: '/absolute/pathname/here' vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows remote authenticated attacker to gain unintended access to files on the system via carefully constructed HTTP requests.	6.5	Moyen
CVE-2019-3661	2019-11-13 22h40 +00:00	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows remote authenticated attacker to execute database commands via carefully constructed time based payloads.	8.8	Haute
CVE-2019-3660	2019-11-13 22h05 +00:00	Improper Neutralization of HTTP requests in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows remote authenticated attacker to execute commands on the server remotely via carefully constructed HTTP requests.	8.8	Haute
CVE-2019-3650	2019-11-13 21h46 +00:00	Information Disclosure vulnerability in McAfee Advanced Threat Defense (ATD prior to 4.8 allows remote authenticated attackers to gain access to the atduser credentials via carefully constructed GET request extracting insecurely information stored in the database.	6.5	Moyen
CVE-2019-3651	2019-11-13 21h45 +00:00	Information Disclosure vulnerability in McAfee Advanced Threat Defense (ATD prior to 4.8 allows remote authenticated attackers to gain access to ePO as an administrator via using the atduser credentials, which were too permissive.	8.8	Haute
CVE-2019-3649	2019-11-13 21h30 +00:00	Information Disclosure vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows remote authenticated attackers to gain access to hashed credentials via carefully constructed POST request extracting incorrectly recorded data from log files.	6.5	Moyen
CVE-2019-3644	2019-09-11 14h08 +00:00	McAfee Web Gateway (MWG) earlier than 7.8.2.13 is vulnerable to a remote attacker exploiting CVE-2019-9517, potentially leading to a denial of service. This affects the scanning proxies.	7.5	Haute
CVE-2019-3643	2019-09-11 14h08 +00:00	McAfee Web Gateway (MWG) earlier than 7.8.2.13 is vulnerable to a remote attacker exploiting CVE-2019-9511, potentially leading to a denial of service. This affects the scanning proxies.	7.5	Haute

Mcafee Advanced Threat Defense 4.0

CPE Details

CPE Name: cpe:2.3:a:mcafee:advanced_threat_defense:4.0:*:*:*:*:*:*:*

Informations

Vendor

Product

Version

Related CVE

CPE Name: cpe:2.3:a:mcafee:advanced_threat_defense:4.0:::::::*