Description
Authentication bypass vulnerability in Enterprise Security Manager (ESM) and License Manager (LM) in Intel Security McAfee Security Information and Event Management (SIEM) 9.6.0 MR3 allows an administrator to make changes to other SIEM users' information including user passwords without supplying the current administrator password a second time via the GUI or GUI terminal commands.
References (4)
Core 4
Core References
Various Sources x_refsource_misc
https://www.narthar.it/DOC/McAfee_SIEM_9.6_Authentication_bypass_vulnerability.html
Vendor Advisory x_refsource_confirm
https://kc.mcafee.com/corporate/index?page=content&id=KB87744
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/95313
Various Sources x_refsource_misc
http://www.quantumleap.it/mcafee-siem-esm-esmrec-authentication-bypass-vulnerability/
Scores
CVSS v3
4.4
EPSS
0.0008
EPSS Percentile
22.7%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N
Details
CWE
CWE-264
Status
published
Products (1)
mcafee/security_information_and_event_management
< 9.6.0
Published
Jan 05, 2017
Tracked Since
Feb 18, 2026