Vulnerability in Intel Mcafee Vulnerability Manager (Mvm)
CVE-2015-8989
Unsalted password vulnerability in the Enterprise Manager (web portal) component in Intel Security McAfee Vulnerability Manager (MVM) 7.5.8 and earlier allows attackers to more easily decrypt user passwords via brute force attacks against…
Vulnerability class: POODLE (CVE-2014-3566)
EPSS: 0.009 (56.6th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 8.8 (High). Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.
Affected products
- Intel Mcafee Vulnerability Manager (Mvm) — versions 7.5.8 and earlier
- Mcafee Vulnerability_manager
Weakness classification (CWE)
References
- secure@intel.com (x_refsource_CONFIRM, Vendor Advisory)
Frequently asked questions
- What is CVE-2015-8989?
- CVE-2015-8989 is a high-severity vulnerability in Intel Mcafee Vulnerability Manager (Mvm), classified under Cryptographic Issues. CVSS score: 8.8/10. Published 2017-03-14.
- How severe is CVE-2015-8989?
- High severity. CVSS v3 base score is 8.8 out of 10.