CVE-2016-8006

MEDIUM

McAfee SIEM 9.6.0 MR3 - Auth Bypass

Title source: llm

Description

Authentication bypass vulnerability in Enterprise Security Manager (ESM) and License Manager (LM) in Intel Security McAfee Security Information and Event Management (SIEM) 9.6.0 MR3 allows an administrator to make changes to other SIEM users' information including user passwords without supplying the current administrator password a second time via the GUI or GUI terminal commands.

References (4)

[Various Sources] http://www.quantumleap.it/mcafee-siem-esm-esmrec-authentication-bypass-vulnerability/

[Vendor Advisory] https://kc.mcafee.com/corporate/index?page=content&id=KB87744

[Various Sources] https://www.narthar.it/DOC/McAfee_SIEM_9.6_Authentication_bypass_vulnerability.html

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/95313

Scores

CVSS v3 4.4

EPSS 0.0008

EPSS Percentile 22.6%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N

Classification

CWE

CWE-264

Status published

Affected Products (2)

mcafee/security_information_and_event_management < 9.6.0

n/a/n/a

Timeline

Published Jan 05, 2017

Tracked Since Feb 18, 2026