McAfee Vulnerability Manager for Databases automatically discovers databases on your network, determines if the latest patches have been applied, and tests for common weaknesses such as weak passwords, default accounts, and other common threats. Vulnerability Manager for Databases conducts more than 3,000 vulnerability checks against leading database systems, including SQL Server, DB2, and MySQL.
Clear visibility into database vulnerabilities
By improving visibility into database vulnerabilities and providing expert recommendations for remediation, Vulnerability Manager for Databases reduces the likelihood of a damaging breach, and saves money through better preparation for audits and compliance with regulatory mandates.
Risk evaluation from all known threat vectors
Unlike other products that overwhelm you with a myriad of minor threats hiding the critical issues that must be addressed, Vulnerability Manager for Databases evaluates risk from all known threat vectors and clearly classifies threats into distinct priority levels, provides fix scripts, and includes recommendations.
Features & Benefits
- Get unparalleled visibility into database security posture – Know exactly where risks are and how to minimize the likelihood of a breach by automatically discovering databases on the network, and conducting more than 3,000 checks for vulnerabilities.
- Save time and money by reducing the need for external database security consultants – Get recommendations for remediation for the most high-priority vulnerabilities, in many cases augmented with fix scripts you can run to address any issues.
- Gain access to more than 3,000 security verifications – Get comprehensive and up-to-date checks of the most popular database platforms reporting on meaningful criteria such as version/patch level, changed objects, modified privileges, and forensic traces from common hacker tools.
- Discover databases and sensitive tables automatically – Find databases by scanning the network or by importing from existing tools, and identify tables containing restricted information based on preset patterns.
- Check passwords quickly and efficiently – Use a variety of techniques to detect weak passwords and shared passwords, including hashed passwords (SHA-1, MD5, and DES), by downloading data for local analysis to avoid affecting database performance.
- Get out-of-the-box regulatory compliance reports and custom reporting – View reports for PCI DSS and other regulations, as well as specific reports for various stakeholders such as database administrators (DBAs), developers, and InfoSec users.
- Get recommendations and fix scripts for high-priority items – Organize items by priority and provide actionable recommendations for remediation based on input from leading security researchers.
- Integrate directly with McAfee ePolicy Orchestrator (ePO) – Plug McAfee Vulnerability Manager for Databases directly into the ePO platform to get centralized reporting and summary information for thousands of databases from one consistent dashboard.
More Documentation