CVE-2017-4057

EUVD-2017-13174
Privilege Escalation vulnerability in the web interface in McAfee Advanced Threat Defense (ATD) 3.10, 3.8, 3.6, 3.4 allows remote authenticated users to gain elevated privileges via the GUI or GUI terminal commands.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
8.8 HIGH
NETWORK
LOW
LOW
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 76%
Affected Products (NVD)
VendorProductVersion
mcafeeadvanced_threat_defense
3.4
mcafeeadvanced_threat_defense
3.6
mcafeeadvanced_threat_defense
3.8
mcafeeadvanced_threat_defense
3.10
𝑥
= Vulnerable software versions
References
http://www.securityfocus.com/bid/99561
https://kc.mcafee.com/corporate/index?page=content&id=SB10204
http://www.securityfocus.com/bid/99561
https://kc.mcafee.com/corporate/index?page=content&id=SB10204