CVE-2019-3662: Advanced Threat Defense (ATD) - Path Traversal: '/absolute/pathname/here' vulnerability
First published: Wed Nov 13 2019(Updated: )
Path Traversal: '/absolute/pathname/here' vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows remote authenticated attacker to gain unintended access to files on the system via carefully constructed HTTP requests.
Credit: psirt@mcafee.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| McAfee Advanced Threat Defense | <4.8 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the CVE ID of this vulnerability?
The CVE ID of this vulnerability is CVE-2019-3662.
What is the title of this vulnerability?
The title of this vulnerability is 'Path Traversal: /absolute/pathname/here' vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.8.'
What is the severity of CVE-2019-3662?
The severity of CVE-2019-3662 is medium with a CVSS score of 6.5.
How does CVE-2019-3662 impact McAfee Advanced Threat Defense?
CVE-2019-3662 allows a remote authenticated attacker to gain unintended access to files on the system through carefully constructed HTTP requests.
How can I fix CVE-2019-3662 in McAfee Advanced Threat Defense?
To fix CVE-2019-3662 in McAfee Advanced Threat Defense, you should update to version 4.8 or later.
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/severity
- agent/weakness
- agent/references
- agent/title
- agent/author
- agent/description
- agent/tags
- agent/first-publish-date
- agent/event
- vendor/mcafee
- canonical/mcafee advanced threat defense