Security Vulnerabilities fixed in McAfee Active Response SB10296
Description
Multiple McAfee products offer HTTP services or process the HTTP protocol. On August 13 2019 there was a disclosure of multiple vulnerabilities in the way products had implemented HTTP/2. A vulnerable version of NGINX is used in MAR Server and ATD. Neither of these products offer HTTP/2 and are not exploitable.
Affected Applications
McAfee Active Response