|
222741
|
8.8 |
HIGH
Network
|
mcafee
|
advanced_threat_defense
|
Improper Neutralization of HTTP requests in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows remote authenticated attacker to execute commands on the server remotely via carefully constructed…
|
NVD-CWE-noinfo
|
CVE-2019-3660
|
2024-11-21 13:42 |
2019-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222742
|
8.8 |
HIGH
Network
|
mcafee
|
advanced_threat_defense
|
Information Disclosure vulnerability in McAfee Advanced Threat Defense (ATD prior to 4.8 allows remote authenticated attackers to gain access to ePO as an administrator via using the atduser credenti…
|
CWE-269
Improper Privilege Management
|
CVE-2019-3651
|
2024-11-21 13:42 |
2019-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222743
|
6.5 |
MEDIUM
Network
|
mcafee
|
advanced_threat_defense
|
Information Disclosure vulnerability in McAfee Advanced Threat Defense (ATD prior to 4.8 allows remote authenticated attackers to gain access to the atduser credentials via carefully constructed GET …
|
NVD-CWE-noinfo
|
CVE-2019-3650
|
2024-11-21 13:42 |
2019-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222744
|
6.5 |
MEDIUM
Network
|
mcafee
|
advanced_threat_defense
|
Information Disclosure vulnerability in McAfee Advanced Threat Defense (ATD) prior to 4.8 allows remote authenticated attackers to gain access to hashed credentials via carefully constructed POST req…
|
CWE-532
Inclusion of Sensitive Information in Log Files
|
CVE-2019-3649
|
2024-11-21 13:42 |
2019-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222745
|
6.5 |
MEDIUM
Adjacent
|
zte
|
zxhn_h108n_firmware
|
All versions up to V2.5.0_EG1T5_TED of ZTE ZXHN H108N product are impacted by an information leak vulnerability. An attacker could exploit the vulnerability to obtain sensitive information and perfor…
|
NVD-CWE-noinfo
|
CVE-2019-3420
|
2024-11-21 13:42 |
2019-11-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222746
|
4.5 |
MEDIUM
Network
|
mcafee
|
threat_intelligence_exchange_server
|
Abuse of Authorization vulnerability in APIs exposed by TIE server in McAfee Threat Intelligence Exchange Server (TIE Server) 3.0.0 allows remote authenticated users to modify stored reputation data …
|
NVD-CWE-noinfo
|
CVE-2019-3641
|
2024-11-21 13:42 |
2019-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222747
|
6.7 |
MEDIUM
Local
|
mcafee
|
anti-virus_plus
internet_security
total_protection
|
A Privilege Escalation vulnerability in the Microsoft Windows client in McAfee Total Protection 16.0.R22 and earlier allows administrators to execute arbitrary code via carefully placing malicious fi…
|
CWE-426
Untrusted Search Path
|
CVE-2019-3648
|
2024-11-21 13:42 |
2019-11-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222748
|
8.8 |
HIGH
Network
|
zte
|
zxupn-9000e_firmware
|
The 9000EV5.0R1B12 version, and all earlier versions of ZTE product ZXUPN-9000E are impacted by the input validation vulnerability. An attacker could exploit this vulnerability for unauthorized opera…
|
CWE-20
Improper Input Validation
|
CVE-2019-3426
|
2024-11-21 13:42 |
2019-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222749
|
8.8 |
HIGH
Network
|
zte
|
zxupn-9000e_firmware
|
The 9000EV5.0R1B12 version, and all earlier versions of ZTE product ZXUPN-9000E are impacted by vulnerability of permission and access control. An attacker could exploit this vulnerability to directl…
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2019-3425
|
2024-11-21 13:42 |
2019-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
222750
|
5.5 |
MEDIUM
Local
|
redhat
|
openstack-mistral
|
An information-exposure vulnerability was discovered where openstack-mistral's undercloud log files containing clear-text information were made world readable. A malicious system user could exploit t…
|
CWE-732
Incorrect Permission Assignment for Critical Resource
|
CVE-2019-3866
|
2024-11-21 13:42 |
2019-11-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
