Unprotected Storage of Credentials vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows local attacker to gain access to the root password via accessing sensitive files on the system. This was originally published with a CVSS rating of High, further investigation has resulted in this being updated to Critical. The root password is common across all instances of ATD prior to 4.8. See the Security bulletin for further details
References
Configurations
History
21 Nov 2024, 04:42
Type | Values Removed | Values Added |
---|---|---|
CVSS |
v2 : v3 : |
v2 : 2.1
v3 : 9.8 |
References | () https://kc.mcafee.com/corporate/index?page=content&id=SB10304 - |
07 Nov 2023, 03:10
Type | Values Removed | Values Added |
---|---|---|
References | () https://kc.mcafee.com/corporate/index?page=content&id=SB10304 - |
Information
Published : 2019-11-14 00:15
Updated : 2024-11-21 04:42
NVD link : CVE-2019-3663
Mitre link : CVE-2019-3663
CVE.ORG link : CVE-2019-3663
JSON object : View
Products Affected
mcafee
- advanced_threat_defense
CWE
CWE-522
Insufficiently Protected Credentials