CVE-2015-8989

high

Trellix

CVSS v3 Base Score

8.8

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS Score

0.3%

Exploitation probability in 30 days

Top 47% most likely to be exploited

Attack Characteristics

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Confidentiality

High

Integrity

High

Availability

High

Published: March 14, 2017 (3348 days ago)

Last Modified: May 13, 2026

Vendor: Trellix

Source: NVD

Description

Unsalted password vulnerability in the Enterprise Manager (web portal) component in Intel Security McAfee Vulnerability Manager (MVM) 7.5.8 and earlier allows attackers to more easily decrypt user passwords via brute force attacks against the database.

CWE

CWE-310

Affected Products

mcafee vulnerability manager

References

🔗 kc.mcafee.com 🔗 kc.mcafee.com

CVE-2015-8989

Vulnerability Report

Description

CWE

Affected Products

References