CVE-2017-4052

Authentication Bypass vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote unauthenticated users / remote attackers to change or update any configuration settings, or gain administrator functionality via a crafted HTTP request parameter.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:mcafee:advanced_threat_defense:3.6:*:*:*:*:*:*:*
cpe:2.3:a:mcafee:advanced_threat_defense:3.4:*:*:*:*:*:*:*
cpe:2.3:a:mcafee:advanced_threat_defense:3.10:*:*:*:*:*:*:*
cpe:2.3:a:mcafee:advanced_threat_defense:3.8:*:*:*:*:*:*:*

Information

Published : 2017-07-12 08:29

Updated : 2017-07-17 06:18


NVD link : CVE-2017-4052

Mitre link : CVE-2017-4052


JSON object : View

CWE
CWE-306

Missing Authentication for Critical Function

Advertisement

dedicated server usa

Products Affected

mcafee

  • advanced_threat_defense