CVE-2019-3663

Unprotected Storage of Credentials vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows local attacker to gain access to the root password via accessing sensitive files on the system. This was originally published with a CVSS rating of High, further investigation has resulted in this being updated to Critical. The root password is common across all instances of ATD prior to 4.8. See the Security bulletin for further details
Configurations

Configuration 1 (hide)

cpe:2.3:a:mcafee:advanced_threat_defense:*:*:*:*:*:*:*:*

History

21 Nov 2024, 04:42

Type Values Removed Values Added
CVSS v2 : 2.1
v3 : 7.8
v2 : 2.1
v3 : 9.8
References () https://kc.mcafee.com/corporate/index?page=content&id=SB10304 - () https://kc.mcafee.com/corporate/index?page=content&id=SB10304 -

07 Nov 2023, 03:10

Type Values Removed Values Added
References (MISC) https://kc.mcafee.com/corporate/index?page=content&id=SB10304 - Vendor Advisory () https://kc.mcafee.com/corporate/index?page=content&id=SB10304 -

Information

Published : 2019-11-14 00:15

Updated : 2024-11-21 04:42


NVD link : CVE-2019-3663

Mitre link : CVE-2019-3663

CVE.ORG link : CVE-2019-3663


JSON object : View

Products Affected

mcafee

  • advanced_threat_defense
CWE
CWE-522

Insufficiently Protected Credentials