cve/2019/CVE-2019-3650.md

### [CVE-2019-3650](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3650)
![](https://img.shields.io/static/v1?label=Product&message=Advanced%20Threat%20Defense%20(ATD)&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=%3C%204.8%20&color=brighgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Information%20Disclosure%20vulnerability&color=brighgreen)

### Description

Information Disclosure vulnerability in McAfee Advanced Threat Defense (ATD prior to 4.8 allows remote authenticated attackers to gain access to the atduser credentials via carefully constructed GET request extracting insecurely information stored in the database.

### POC

#### Reference
- https://kc.mcafee.com/corporate/index?page=content&id=SB10304

#### Github
No PoCs found on GitHub currently.
Update Sun May 26 14:27:04 CEST 2024 2024-05-26 14:27:05 +02:00			`### [CVE-2019-3650](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-3650)`
			`![](https://img.shields.io/static/v1?label=Product&message=Advanced%20Threat%20Defense%20(ATD)&color=blue)`
			`![](https://img.shields.io/static/v1?label=Version&message=%3C%204.8%20&color=brighgreen)`
			`![](https://img.shields.io/static/v1?label=Vulnerability&message=Information%20Disclosure%20vulnerability&color=brighgreen)`

			`### Description`

			`Information Disclosure vulnerability in McAfee Advanced Threat Defense (ATD prior to 4.8 allows remote authenticated attackers to gain access to the atduser credentials via carefully constructed GET request extracting insecurely information stored in the database.`

			`### POC`

			`#### Reference`
			`- https://kc.mcafee.com/corporate/index?page=content&id=SB10304`

			`#### Github`
			`No PoCs found on GitHub currently.`