Mcafee Advanced Threat Defense — known CVE vulnerabilities
Every CVE whose affected-product data names Mcafee Advanced Threat Defense, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (26)
CVE-2017-4052 — CVSS 9.8 (critical): Authentication Bypass vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote…
CVE-2017-4053 — CVSS 9.8 (critical): Command Injection vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote…
CVE-2019-3663 — CVSS 9.8 (critical): Unprotected Storage of Credentials vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows local attacker to gain access…
CVE-2019-3651 — CVSS 8.8 (high): Information Disclosure vulnerability in McAfee Advanced Threat Defense (ATD prior to 4.8 allows remote authenticated attackers to gain…
CVE-2017-4054 — CVSS 8.8 (high): Command Injection vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote…
CVE-2017-4057 — CVSS 8.8 (high): Privilege Escalation vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote…
CVE-2019-3660 — CVSS 8.4 (high): Improper Neutralization of HTTP requests in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows remote authenticated attacker to…
CVE-2019-3661 — CVSS 8.1 (high): Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in McAfee Advanced Threat Defense (ATD) prior to 4.8…
CVE-2020-7254 — CVSS 7.7 (high): Privilege Escalation vulnerability in the command line interface in McAfee Advanced Threat Defense (ATD) 4.x prior to 4.8.2 allows local…
CVE-2016-3983 — CVSS 7.5 (high): McAfee Advanced Threat Defense (ATD) before 3.4.8.178 might allow remote attackers to bypass malware detection by leveraging information…
CVE-2019-3644 — CVSS 7.5 (high): McAfee Web Gateway (MWG) earlier than 7.8.2.13 is vulnerable to a remote attacker exploiting CVE-2019-9517, potentially leading to a denial…
CVE-2017-4055 — CVSS 7.5 (high): Exploitation of Authentication vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote…
CVE-2015-8990 — CVSS 7.5 (high): Detection bypass vulnerability in Intel Security Advanced Threat Defense (ATD) 3.4.6 and earlier allows malware samples to bypass ATD…
CVE-2017-3899 — CVSS 6.5 (medium): SQL injection vulnerability in Intel Security Advanced Threat Defense (ATD) Linux 3.6.0 and earlier allows remote authenticated users to…
CVE-2023-0978 — CVSS 6.4 (medium): A command injection vulnerability in Trellix Intelligent Sandbox CLI for version 5.2 and earlier, allows a local user to inject and execute…
CVE-2015-3028 — CVSS 5.5 (medium): McAfee Advanced Threat Defense (MATD) before 3.4.4.63 allows remote authenticated users to bypass intended restrictions and change or…
CVE-2019-3643 — CVSS 5.3 (medium): McAfee Web Gateway (MWG) earlier than 7.8.2.13 is vulnerable to a remote attacker exploiting CVE-2019-9511, potentially leading to a denial…
CVE-2019-3650 — CVSS 5.3 (medium): Information Disclosure vulnerability in McAfee Advanced Threat Defense (ATD prior to 4.8 allows remote authenticated attackers to gain…
CVE-2019-3649 — CVSS 5.3 (medium): Information Disclosure vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows remote authenticated attackers to gain…
CVE-2020-7262 — CVSS 5.3 (medium): Improper Access Control vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.10.0 allows local users to view sensitive files…
CVE-2020-7269 — CVSS 4.9 (medium): Exposure of Sensitive Information in the web interface in McAfee Advanced Threat Defense (ATD) prior to 4.12.2 allows remote authenticated…
CVE-2020-7270 — CVSS 4.9 (medium): Exposure of Sensitive Information in the web interface in McAfee Advanced Threat Defense (ATD) prior to 4.12.2 allows remote authenticated…
CVE-2015-3030 — CVSS 4.0 (medium): The web interface in McAfee Advanced Threat Defense (MATD) before 3.4.4.63 allows remote authenticated users to obtain sensitive…
CVE-2015-3029 — CVSS 4.0 (medium): The web interface in McAfee Advanced Threat Defense (MATD) before 3.4.4.63 does not properly restrict access, which allows remote…