CVE-2019-3662
MEDIUMMcAfee Advanced Threat Defense < 4.8 - Authenticated Path Traversal via HTTP Request
Title source: llmDescription
Path Traversal: '/absolute/pathname/here' vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows remote authenticated attacker to gain unintended access to files on the system via carefully constructed HTTP requests.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_misc
https://kc.mcafee.com/corporate/index?page=content&id=SB10304
Scores
CVSS v3
6.5
EPSS
0.0034
EPSS Percentile
56.9%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-22
Status
published
Products (1)
mcafee/advanced_threat_defense
< 4.8
Published
Nov 14, 2019
Tracked Since
Feb 18, 2026