CVE-2017-4052

Summary

Authentication Bypass vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote unauthenticated users / remote attackers to change or update any configuration settings, or gain administrator functionality via a crafted HTTP request parameter.

Affected Software

VendorProductVersion RangeStatus
McAfeeAdvanced Threat Defense (ATD)3.10affected
McAfeeAdvanced Threat Defense (ATD)3.8affected
McAfeeAdvanced Threat Defense (ATD)3.6affected
McAfeeAdvanced Threat Defense (ATD)3.4affected

Weaknesses

  • Authentication Bypass vulnerability

ADP Enrichment

CVE Program Container

Additional References

References