Vulnerabilities > Mcafee > Advanced Threat Defense > 3.4.4.14

DATE CVE VULNERABILITY TITLE RISK
2017-03-14 CVE-2017-3899 SQL Injection vulnerability in Mcafee Advanced Threat Defense 3.4.2.32/3.4.4.14/3.4.4.142
SQL injection vulnerability in Intel Security Advanced Threat Defense (ATD) Linux 3.6.0 and earlier allows remote authenticated users to obtain product information via a crafted HTTP request parameter.
network
low complexity
mcafee CWE-89
4.0
4.0
2017-03-14 CVE-2015-8990 7PK - Security Features vulnerability in Mcafee Advanced Threat Defense 3.4.2.32/3.4.4.14/3.4.4.142
Detection bypass vulnerability in Intel Security Advanced Threat Defense (ATD) 3.4.6 and earlier allows malware samples to bypass ATD detection via renaming the malware.
network
low complexity
mcafee CWE-254
5.0
5.0
2016-04-08 CVE-2016-3983 Insufficient Verification of Data Authenticity vulnerability in Mcafee Advanced Threat Defense 3.4.2.32/3.4.4.14/3.4.4.142
McAfee Advanced Threat Defense (ATD) before 3.4.8.178 might allow remote attackers to bypass malware detection by leveraging information about the parent process.
network
low complexity
mcafee CWE-345
5.0
5.0
2015-04-08 CVE-2015-3030 Information Exposure vulnerability in Mcafee Advanced Threat Defense 3.4.2.32/3.4.4.14
The web interface in McAfee Advanced Threat Defense (MATD) before 3.4.4.63 allows remote authenticated users to obtain sensitive configuration information via unspecified vectors.
network
low complexity
mcafee CWE-200
4.0
4.0
2015-04-08 CVE-2015-3029 Permissions, Privileges, and Access Controls vulnerability in Mcafee Advanced Threat Defense 3.4.2.32/3.4.4.14
The web interface in McAfee Advanced Threat Defense (MATD) before 3.4.4.63 does not properly restrict access, which allows remote authenticated users to obtain sensitive information via unspecified vectors.
network
low complexity
mcafee CWE-264
4.0
4.0
2015-04-08 CVE-2015-3028 Permissions, Privileges, and Access Controls vulnerability in Mcafee Advanced Threat Defense 3.4.2.32/3.4.4.14
McAfee Advanced Threat Defense (MATD) before 3.4.4.63 allows remote authenticated users to bypass intended restrictions and change or update configuration settings via crafted parameters.
network
low complexity
mcafee CWE-264
5.5
5.5