First published: Wed Apr 10 2019(Updated: )
Information Disclosure vulnerability in McAfee DXL Platform and TIE Server in DXL prior to 5.0.1 HF2 and TIE prior to 2.3.1 HF1 allows Authenticated users to view sensitive information in plain text via the GUI or command line.
Credit: psirt@mcafee.com trellixpsirt@trellix.com
Affected Software | Affected Version | How to fix |
---|---|---|
McAfee Data eXchange Layer | >=4.0.0<=4.1.2 | |
McAfee Data eXchange Layer | >=5.0.0<=5.0.1 | |
Mcafee Threat Intelligence Exchange | >=2.0.0<=2.3.1 | |
>=4.0.0<=4.1.2 | ||
>=5.0.0<=5.0.1 | ||
>=2.0.0<=2.3.1 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2019-3612 is an information disclosure vulnerability in McAfee DXL Platform and TIE Server, which allows authenticated users to view sensitive information in plain text via the GUI or command line.
CVE-2019-3612 affects McAfee DXL Platform versions prior to 5.0.1 HF2, allowing authenticated users to view sensitive information in plain text.
CVE-2019-3612 affects McAfee TIE Server versions prior to 2.3.1 HF1, allowing authenticated users to view sensitive information in plain text.
CVE-2019-3612 has a severity rating of high, with a CVSS score of 4.4.
To fix CVE-2019-3612, update McAfee DXL Platform to version 5.0.1 HF2 or later, and update McAfee TIE Server to version 2.3.1 HF1 or later.