Unauthorized Modification of Reputation Data in McAfee Threat Intelligence Exchange Server (TIE Server) 3.0.0

Unauthorized Modification of Reputation Data in McAfee Threat Intelligence Exchange Server (TIE Server) 3.0.0

CVE-2019-3641 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:H/A:N

Abuse of Authorization vulnerability in APIs exposed by TIE server in McAfee Threat Intelligence Exchange Server (TIE Server) 3.0.0 allows remote authenticated users to modify stored reputation data via specially crafted messages.

Learn more about our Cis Benchmark Audit For Microsoft Exchange Server.