Information disclosure vulnerability in McAfee TIE Server and DXL Platform
CVE-2019-3612

8.2HIGH

Key Information:

Vendor: Mcafee, Llc
Status: Data Exchange Layer (dxl) Platform; Threat Intelligence Exchange (tie) Server
Vendor: CVE Published:; 10 April 2019

🔔 Create Mcafee, Llc Vulnerability Alert

What is CVE-2019-3612?

Information Disclosure vulnerability in McAfee DXL Platform and TIE Server in DXL prior to 5.0.1 HF2 and TIE prior to 2.3.1 HF1 allows Authenticated users to view sensitive information in plain text via the GUI or command line.

Affected Version(s)

Data eXchange Layer (DXL) Platform < 5.0.1 HF2

Threat Intelligence Exchange (TIE) Server < 2.3.1 HF1

References

https://kc.mcafee.com/corporate/index?page=content&id=SB1...

x_refsource_CONFIRM

CVSS V3.1

Score:

8.2

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 10, 2019
Vulnerability Reserved
Jan 3, 2019