CVE-2019-3663

Summary

Unprotected Storage of Credentials vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows local attacker to gain access to the root password via accessing sensitive files on the system. This was originally published with a CVSS rating of High, further investigation has resulted in this being updated to Critical. The root password is common across all instances of ATD prior to 4.8. See the Security bulletin for further details

Affected Software

VendorProductVersion RangeStatus
McAfeeAdvanced Threat Defense (ATD)prior to 4.8affected

Weaknesses

  • Unprotected Storage of Credentials vulnerability

ADP Enrichment

CVE Program Container

Additional References

References