CVE-2017-4057
Published Jul 12, 2017
Last updated 5 years ago
Overview
- Description
- Privilege Escalation vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote authenticated users to gain elevated privileges via the GUI or GUI terminal commands.
- Source
- secure@intel.com
- NVD status
- Modified
Risk scores
CVSS 3.0
- Type
- Primary
- Base score
- 8.8
- Impact score
- 5.9
- Exploitability score
- 2.8
- Vector string
- CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
CVSS 2.0
- Type
- Primary
- Base score
- 6.5
- Impact score
- 6.4
- Exploitability score
- 8
- Vector string
- AV:N/AC:L/Au:S/C:P/I:P/A:P
Weaknesses
- nvd@nist.gov
- NVD-CWE-noinfo
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:mcafee:advanced_threat_defense:3.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AD7EA0FB-89B8-42D5-9FEB-ED7BCF95C0C9"
},
{
"criteria": "cpe:2.3:a:mcafee:advanced_threat_defense:3.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BA8CE425-423E-4770-A4E8-5FCFABC23D9B"
},
{
"criteria": "cpe:2.3:a:mcafee:advanced_threat_defense:3.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C3361CC0-8D59-459F-A349-22028BDEA4FE"
},
{
"criteria": "cpe:2.3:a:mcafee:advanced_threat_defense:3.10:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2FD51315-9731-42B2-A9D2-E6E18A417658"
}
],
"operator": "OR"
}
]
}
]