CVE-2015-8024 in Enterprise Security Managerinfo

Summary

McAfee Enterprise Security Manager (ESM), Enterprise Security Manager/Log Manager (ESMLM), and Enterprise Security Manager/Receiver (ESMREC) 9.3.x before 9.3.2MR19, 9.4.x before 9.4.2MR9, and 9.5.x before 9.5.0MR8, when configured to use Active Directory or LDAP authentication sources, allow remote attackers to bypass authentication by logging in with the username "NGCP|NGCP|NGCP;" and any password.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Reservation

10/29/2015

Disclosure

12/02/2015

Moderation

VulDB entry created

Entries

1: VDB-79375

CPE

ready

CWE

CWE-78 (Confirmed)

CVSS

7.3

EPSS

0.01450

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2015-8024
NVD	https://nvd.nist.gov/vuln/detail/CVE-2015-8024
CVE Details	https://www.cvedetails.com/cve/CVE-2015-8024/

◂ Previous Overview Next ▸

Might our Artificial Intelligence support you?

Check our Alexa App!