CVE-2019-3661

Summary

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows remote authenticated attacker to execute database commands via carefully constructed time based payloads.

Affected Software

VendorProductVersion RangeStatus
McAfeeAdvanced Threat Defense (ATD)unspecified < 4.8affected

Weaknesses

  • Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

ADP Enrichment

CVE Program Container

Additional References

References