Critical Vulnerability: Unprotected Storage of Credentials in McAfee Advanced Threat Defense (ATD) prior to 4.8

Critical Vulnerability: Unprotected Storage of Credentials in McAfee Advanced Threat Defense (ATD) prior to 4.8

CVE-2019-3663 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Unprotected Storage of Credentials vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows local attacker to gain access to the root password via accessing sensitive files on the system. This was originally published with a CVSS rating of High, further investigation has resulted in this being updated to Critical. The root password is common across all instances of ATD prior to 4.8. See the Security bulletin for further details

Learn more about our Web Application Penetration Testing UK.