Vulnerabilities
Misconfiguration
Runtime Security
Compliance
CVE Vulnerabilities

CVE-2019-3644

Published: Sep 11, 2019 | Modified: Nov 07, 2023
CVSS 3.x
7.5
HIGH
Source:
NVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:N/I:N/A:P
RedHat/V2
RedHat/V3
Ubuntu
Additional information
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2019-3644
CWEhttps://cwe.mitre.org/data/definitions/.html

McAfee Web Gateway (MWG) earlier than 7.8.2.13 is vulnerable to a remote attacker exploiting CVE-2019-9517, potentially leading to a denial of service. This affects the scanning proxies.

Affected Software

Name Vendor Start Version End Version
Active_response Mcafee 1.0.0 (including) 1.0.0 (including)
Active_response Mcafee 1.1.0 (including) 1.1.0 (including)
Active_response Mcafee 2.0 (including) 2.0 (including)
Active_response Mcafee 2.0.1 (including) 2.0.1 (including)
Active_response Mcafee 2.1 (including) 2.1 (including)
Active_response Mcafee 2.2 (including) 2.2 (including)
Active_response Mcafee 2.3 (including) 2.3 (including)
Active_response Mcafee 2.4 (including) 2.4 (including)
Advanced_threat_defense Mcafee 4.0 (including) 4.0 (including)
Advanced_threat_defense Mcafee 4.2 (including) 4.2 (including)
Advanced_threat_defense Mcafee 4.4 (including) 4.4 (including)
Advanced_threat_defense Mcafee 4.6 (including) 4.6 (including)
Enterprise_security_manager Mcafee 10.2.0 (including) 10.2.0 (including)
Enterprise_security_manager Mcafee 10.3.4 (including) 10.3.4 (including)
Enterprise_security_manager Mcafee 10.4.0 (including) 10.4.0 (including)
Enterprise_security_manager Mcafee 11.0.0 (including) 11.0.0 (including)
Enterprise_security_manager Mcafee 11.1.0 (including) 11.1.0 (including)
Enterprise_security_manager Mcafee 11.1.1 (including) 11.1.1 (including)
Enterprise_security_manager Mcafee 11.1.2 (including) 11.1.2 (including)
Enterprise_security_manager Mcafee 11.1.3 (including) 11.1.3 (including)
Enterprise_security_manager Mcafee 11.2.0 (including) 11.2.0 (including)
Web_gateway Mcafee 7.7.2.0 (including) 7.7.2.24 (excluding)
Web_gateway Mcafee 7.8.2 (including) 7.8.2.13 (excluding)
Web_gateway Mcafee 8.0.0 (including) 8.2.0 (excluding)

References

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.
Copyright © 2024 Aqua Security Software Ltd.   Privacy Policy | Terms of Use