← Voltar para CVEs
CVE-2019-3641
MEDIUM4.5
Descricao
Abuse of Authorization vulnerability in APIs exposed by TIE server in McAfee Threat Intelligence Exchange Server (TIE Server) 3.0.0 allows remote authenticated users to modify stored reputation data via specially crafted messages.
Detalhes CVE
Pontuacao CVSS v3.14.5
SeveridadeMEDIUM
Vetor CVSSCVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:N/I:H/A:N
Vetor de ataqueNETWORK
ComplexidadeLOW
Privilegios necessariosHIGH
Interacao do usuarioREQUIRED
Publicado11/13/2019
Ultima modificacao11/21/2024
Fontenvd
Avistamentos honeypot0
Produtos afetados
mcafee:threat_intelligence_exchange_server
Fraquezas (CWE)
CWE-285
Referencias
https://kc.mcafee.com/corporate/index?page=content&id=SB10303(trellixpsirt@trellix.com)
https://kc.mcafee.com/corporate/index?page=content&id=SB10303(af854a3a-2127-422b-91ae-364da2661108)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.