- Chat with McAfee Ready to make a purchase or have questions before you buy? Chat with a McAfee expert. Available Monday to Friday.
- Find a Reseller
- Contact Me
- Get Security Notifications Now
- Call: 800-448-1657
Overview
McAfee Vulnerability Manager provides fast, precise, and complete insights into vulnerabilities on all of your networked assets. Easy-to-implement Vulnerability Manager readily scales to suit networks from hundreds to millions of nodes. Nonstop global research helps you stay ahead of evolving threats and new vulnerabilities. Our single, actionable, correlated view of your weaknesses and our patented FoundScore risk formula helps you direct remediation efforts where they are needed most.
Vulnerability Manager gives you:
Priority-based auditing and remediation — Combines vulnerability, severity, and asset criticality information to quickly identify, rank, and address violations and vulnerabilities on networked systems and devices.
Proof of “not vulnerable” — A major requirement of auditors is to prove that you’re not vulnerable to threats, which is a significant attribute of McAfee Vulnerability Manager.
New threat identification and correlation — Automatically ranks the risk potential of new threats by correlating events to your asset and vulnerability data.
Policy auditing and compliance assessments — Defines values of policy checks and determines whether your organization complies with major regulations. Through an easy-to-use wizard it gives you templates for SOX, FISMA, HIPAA, PCI, and more.
Flexible reporting — Categorizes data by asset or network, and uses powerful filters to select and organize results in your reports. You can even create reports while scans are running.
Broad and deep content coverage — Performs authenticated and unauthenticated checks, automatically updated 24/7 by McAfee Labs, the world’s top threat research center. This helps you delve deep into operating systems and network devices to find vulnerabilities and policy violations.
Features & Benefits
Drill deep into web applications
Conduct deep scans of web applications that allow you to know where to focus your coding efforts before hackers can exploit your business-critical data. The scans include required checks for PCI, as well as coverage of the 2010 OWASP Top 10 and CWE-25 categories.
Start scanning within minutes
Choose an all-in-one or custom install on your physical or virtual hardware or our hardened appliances; use existing LDAP, Active Directory, or McAfee ePolicy Orchestrator (ePO) asset management systems, or let the first scan discover your assets.
Use comprehensive and customizable content for checks and reports
Save hours with SCAP support and predefined, up-to-date policy templates. Our extensive checks validate alignment to federal and regulatory requirements and write custom scripts and checks to test proprietary and legacy systems.
Meet demanding federal and industry requirements
Certify to EAL Common Criteria and validate to FIPS-140-2 encryption. McAfee Vulnerability Manager includes templates for the most popular compliance templates and standards.
Gain unmatched vulnerability coverage, scanning accuracy, and malware protection
Go beyond ports and configurations to inspect systems, databases, and applications on all networked assets — from smartphones to secure servers.
Increase flexibility and performance
Tailor your deployment, scans, reporting, and management consoles, regardless of whether you centralize or segregate your operations, with the speed required for even multimillion node networks.
Prove “not vulnerable” to threats
Generate conclusive evidence — such as expected and actual scan results, any systems not scanned, and any failed scans — to document that specific systems are “not vulnerable,” an increasingly common audit requirement.
Respond to threats via McAfee Global Threat Intelligence
Leverage millions of sensors around the world that direct hundreds of McAfee Labs researchers to the latest changes in the threat landscape, fueling real-time risk assessments and threat advisories.
System Requirements
Vulnerability Manager Software
Deploy Vulnerability Manager as software on your own hardware or in a virtualized environment. Software deployment has the following minimum requirements:
- Hardware
- CPU: x86 multi-core, 2 GHz or higher (quad-core recommended)
- RAM: 2 GB minimum (4 GB recommended)
- Disk space: 80 GB minimum (200 GB for database)
- Virtual host
- VMware Virtual Infrastructure 3, vSphere (ESX/ESXi)
- VMware Workstation
- Operating system
- Microsoft Windows 2003 Server (32-bit) with Service Pack 2 (SP2) or higher
- Database
- Microsoft SQL Server 2005 with SP2 or higher (any edition)
- All SQL hotfixes and patches
Vulnerability Manager MVM3100 Appliance
Choose this purpose-built, hardened appliance for even faster, more effortless deployment. It includes all necessary software and an enterprise-grade database. Hardware deployment has the following minimum requirements:
- Hardware
- 1U rack mount chassis
- Quad-core Xeon
- 4 GB RAM
- 2 x 500 GB RAID 1
- Redundant power supplies
- Lights-out management
- 4 GbE scanning ports (VLANs supported)
Demos / Tutorials
McAfee Risk & Compliance
Learn how McAfee Risk and Compliance products scan your entire network, providing complete visibility and ensuring proper protection.
Tutorials
Awards / Reviews
Gartner MarketScope for Vulnerability Assessment
"McAfee Vulnerability Manager provides agentless security configuration assessment, plus integration with the agent-based McAfee Policy Auditor, with coverage of DISA STIG, NSA, FDCC, and CIS controls. McAfee Vulnerability Manager has flexible asset management, remediation reporting, and workflow capabilities."
McAfee Vulnerability Manager Product Review
In an independent evaluation conducted by S3KUR3 Inc., McAfee Vulnerability Manager was assessed as "No other solution combines the flexibility, comprehensive scanning, and powerful remediation capabilities in a single package."
Vulnerability Manager Rated Best Buy by SC Magazine
The McAfee Vulnerability Manager is a powerful appliance-based tool that provides vulnerability assessment, penetration testing and web application scanning along with rogue device detection and plug-in capability to LDAP (Lightweight Directory Access Protocol) and Microsoft Active Directory for asset management.
McAfee, Inc. System Security and Vulnerability Management Products Verified as Citrix Ready
SANTA CLARA, Calif., August 17, 2009 - McAfee, Inc. (NYSE:MFE) today announced that McAfee VirusScan Enterprise, McAfee Anti-spyware Enterprise, McAfee ePolicy Orchestrator, and McAfee Vulnerability Manager have been verified as Citrix Ready™. The Citrix Ready program identifies trusted, third-party solutions that add the greatest value in the Citrix Delivery Center™ infrastructure. The above-mentioned McAfee products have completed a rigorous verification process to ensure compatibility with Citrix® XenApp™.
Customer Stories
Abtran
McAfee security risk management solutions help Abtran meet clients’ increasing security requirements.
Highlights
- Provided multiple layers of security risk management protection for Abtran’s clients
- Reduced IT hours spent supporting, administering, and monitoring endpoint security
- Cut time to produce weekly security reports from three or four hours to less than two minutes
- Migrated easily and seamlessly from existing anti-virus solutions
Alcatel-Lucent Shanghai Bell
Alcatel-Lucent Shanghai Bell uses McAfee Network Security Platform to secure 100 Mbps to 10 Gbps corporate networks against threats and attacks.
Highlights
- Increased identification and interception of up to 99% of the threats
- Improved the work efficiency and allowed the information security and network departments to cooperate with each other in monitoring security threats and risks
California State University, Chico
California State University, Chico, remediates system vulnerabilities and mitigates risk with McAfee Vulnerability Manager.
Highlights
- Increased risk visibility at department and campus levels, enabling snapshot of security status at any time
- Accelerated time to remediation by providing clear remediation steps for systems administrators
- Reduced time spent scheduling vulnerability scans, and preparing and analyzing reports
- Improved and accelerated decision making by providing user-friendly metrics, graphical reports, and trend analysis
- Improved overall security risk posture
Cardnet
Cardnet eliminates malware infections with comprehensive network, email, and endpoint security from McAfee.
Highlights
- Total absence of known infections of any kind
- Protected the entire IT infrastructure
- Maintained IT security with a staff of three, versus 20 or more if the McAfee suite was not in place
CEMEX
CEMEX relies on McAfee to find system vulnerabilities and prevent data loss.
Highlights
- Discovered and assessed systems vulnerabilities
- Provided in-depth visibility regarding network assets
- Reduced vulnerability false positives by 80%
- Saved IT hours each week thanks to easy-to-use reports and minimal false positives
- Prioritized threat response
Citrix Systems
Citrix reduces risk with McAfee’s integrated security risk management platform.
Highlights
- Deployed quickly and easily, saving $40,000 in deployment costs
- Reduced incident response rate by 40% and overall TCO of security risk management
- Dramatically eased security administration and accelerated patch deployment
- Reduced remediation time by 70%
DSM
DSM enlists McAfee to strengthen enterprise network security control and compliance.
Highlights
- Provided full visibility into network traffic and connected systems
- Simplified patch management
- Improved compliance with regulations and policies
- Increased efficiencies for significant cost savings
HCF
HCF gets comprehensive anti-malware protection and streamlined security management with McAfee.
Highlights
- Smooth implementation
- Easy identification of vulnerable areas
- Meaningful reports for IT administrators who are only advised about attacks that are relevant to the environment
- Enabled automatic enforcement of security policies; ensuring network integrity
- Automation of patch management freed up IT staff to focus on strategic work
Idaho State Tax Commission
Idaho State Tax Commission chooses McAfee to embed security in a new network infrastructure.
Highlights
- Identified vulnerabilities and blocked threats
- Delivered reliable endpoint protection
- Enabled compliance with National Institute of Standards and Technology (NIST) security guidelines
- Provided support for the commission’s defense-in-depth security strategy
- Helped increase security awareness among network users
Integral Energy
Integral Energy proactively assesses and manages vulnerabilities with McAfee Vulnerability Manager.
Highlights
- Discovered and assessed system vulnerabilities quickly and accurately
- Enabled threat prioritization and proactive, informed decision making
- Provided in-depth visibility regarding network assets
- Facilitated compliance with ISO 27001 standard
Intelsat
Intelsat trusts McAfee to protect user and network devices globally.
Highlights
- Protected a diverse environment from internal and external threats, including the inherent risks of a fluctuating population of 250 to 500 contractors
- Managed the entire server system with 1.5 full-time employees (FTEs)
- Reduced solution cost by 75% over a la carte purchases from separate vendors
- Standardized a security environment that previously required five vendors
- Complied with regulations, including SOX, HIPAA, and Department of Defense (DoD)
Manteca Unified School District
Manteca Unified School District protects students with McAfee solutions.
Highlights
- Increased bandwidth by 20% after eliminating IM and file sharing
- Reduced virus outbreaks to zero per year, compared with one or more in prior years
- Enabled systems administrators to quickly learn new solutions through centralized management capabilities of McAfee ePolicy Orchestrator (ePO) platform
NYC Department of IT and Telecommunications
NYC Department of IT and Telecommunications uses McAfee for for vulnerability management, endpoint encryption, and other areas of security functionality.
Highlights
- Increased protection with a savings of $18 million
- Provided centralized control across highly distributed IT environment
Scottrade
Scottrade partners with McAfee to secure customer data.
Highlights
- Eliminated network vulnerabilities and protected customer information
- Improved monitoring and control of workstations and servers via a single management console
- Streamlined and accelerated security management and vulnerability assessment
- Simplified deployment, patches, and upgrades
- Helped Scottrade garner multiple awards for customer satisfaction and IT excellence
TeliaSonera AB
A leading telecommunications group in the Nordic and Baltic regions strengthens anti-virus security with McAfee.
Highlights
- Protected 23,000 endpoints against viruses
- Enforced blacklisting of potentially malicious applications
- Delivered powerful functionality, ease of use, and simplified administration
- Helped secure the patch update process
News / Events
News
- McAfee Unveils the First Situational and Risk Aware SIEM
April 24, 2012Topics : Risk & Compliance, Security Management, SIEM
- McAfee Named Finalist in 11 SC Magazine 2012 Awards Categories
November 17, 2011Topics : Mobile Security
- McAfee Delivers Comprehensive Database Security Solution
March 23, 2011Topics : Risk & Compliance, Database Security
- Sentrigo Launches Comprehensive Enterprise-Class Vulnerability Assessment Solution for Databases
September 13, 2010Topics : Database Security
- McAfee Unveils Unparalleled Risk Management Solution
July 19, 2010Topics : Endpoint Protection, Risk & Compliance, Database Security
- McAfee, Inc. Advances Agent-Less Malware Detection Capability
February 24, 2010Topics : Risk & Compliance
Events
No results foundOn Demand
No results foundResources
McAfee Vulnerability Manager
For a technical summary on the McAfee product listed above, please view the product data sheet.
Reports
Solution Briefs
Technology Blueprints
White Papers
Community
Forums
McAfee Communities : All Content - Vulnerability Manager (Foundstone)
- MVM 7 license usage
1 day ago - Past Due Tickets Notification
3 days ago - Can't find full vulnerability scan template
3 days ago - 1 Post - Workstation vulnerability scanning-How do you do it?
3 days ago - 5 posts - Scan for open shared folder in the network
3 days ago
Blogs
- RDP+RCE=Bad News (MS12-020)
Jim Walter - March 14, 2012
See March 15 and 16 updates at the end of this blog. —————————————————- The March Security Bulletin release from Microsoft was relatively light in volume. Out of the six bulletins released, only one was rated as Critical. And for good reason. MS12-020 includes CVE-2012-0002. This flaw is specific to the Remote Desktop Protocol (RDP) present on Read more... - An Update on DNSChanger and Rogue DNS Servers
Jim Walter - March 06, 2012
In late 2011, the FBI released documents and data focusing on “Operation Ghost Click.” This malicious operation, leveraging a variety of DNSChanger-type malware, was defined by the FBI as an “international cyber ring that infected millions of computers.” Associated malware samples and events can be traced back several years, and multiple platforms were targeted. To this day many remain Read more... - McAfee Q4 Threats Report Shows Malware Surpassed 75 Million Samples in 2011
David Marcus - February 21, 2012
Today we released our Fourth Quarter 2011 Threat Report, revealing that malware surpassed the our estimate of 75 million unique malware samples last year. Although the release of new malware slowed a bit in Q4, mobile malware continued to increase and recorded its busiest year to date. Malware The overall growth of PC-based malware actually Read more... - Cultural Security: Promoting Security Policies Using Organizational Culture
Steven Fox - September 06, 2011
Most of us refer to security policies in much the same way as we refer to our car manuals – when something unexpected happens. We know these documents have useful information. However, their utility is tied to situations where answers do not present themselves readily. According to Chris Noel, SVP of Product Management at ANXeBusiness, Read more... - Building an Arsenal of Best-in-Breed Database Security Solutions
Eric Schou - August 19, 2011
Visit any news site on the Web, and undoubtedly you’ll come across a barrage of articles publicizing the details of yet another data breach. With the prominence of SQL injection attacks, and malicious insiders and hackers exploiting sensitive data stored on unpatched and vulnerable databases, enterprise organizations have found themselves reevaluating their security strategies. Following Read more...