CVE-2017-4057
First published: Wed Jul 12 2017(Updated: )
Privilege Escalation vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote authenticated users to gain elevated privileges via the GUI or GUI terminal commands.
Credit: secure@intel.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| McAfee Advanced Threat Defense | =3.4 | |
| McAfee Advanced Threat Defense | =3.6 | |
| McAfee Advanced Threat Defense | =3.8 | |
| McAfee Advanced Threat Defense | =3.10 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2017-4057?
CVE-2017-4057 has been identified as a privilege escalation vulnerability.
How do I fix CVE-2017-4057?
To remediate CVE-2017-4057, ensure that you apply the necessary patches provided by McAfee for all affected versions.
Which versions of McAfee Advanced Threat Defense are affected by CVE-2017-4057?
CVE-2017-4057 affects McAfee Advanced Threat Defense versions 3.4, 3.6, 3.8, and 3.10.
Who can exploit CVE-2017-4057?
Remote authenticated users can exploit CVE-2017-4057 to gain elevated privileges through the GUI.
What does CVE-2017-4057 allow attackers to do?
CVE-2017-4057 allows attackers to gain elevated privileges on the McAfee Advanced Threat Defense system.
- collector/nvd-index
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/remedy
- agent/last-modified-date
- agent/author
- agent/severity
- agent/description
- agent/tags
- agent/event
- agent/first-publish-date
- agent/source
- vendor/mcafee
- canonical/mcafee advanced threat defense
- version/mcafee advanced threat defense/3.4
- version/mcafee advanced threat defense/3.6
- version/mcafee advanced threat defense/3.8
- version/mcafee advanced threat defense/3.10