Assurance Continuity - Vulnerability Manager v7.5 Version 0.2

Date of Maintenance Completion: 05 November 2012

Product Type: IDS/IPS

Conformance Claim: EAL2 Augmented with ALC_FLR.2

PP Identifiers: None

Original Evaluated TOE: 24 October 2011 - McAfee Vulnerability Manager 7.0

Please note: These are for the Original Evaluated TOE; consequently, they do not refer to this maintained version, although they apply to the maintained version.

Please note: This serves as an addendum to the VR for the Original Evaluated TOE

Readers are reminded that the certification of this product (TOE) is the result of maintenance, rather than an actual re-evaluation of the product. Maintenance only considers the affect of TOE changes on the assurance baseline (i.e. the original evaluated TOE); maintenance is not intended to provide assurance in regard to the resistance of the TOE to new vulnerabilities or attack methods discovered since the date of the initial certificate. Such assurance can only be gained through re-evaluation.

Using a security impact analysis of the changes made to the TOE, which was provided by the developer, the CCEVS has determined that the impact of changes on the TOE are considered minor and that independent evaluator analysis was not necessary. A summary of the results can be found in the Maintenance Report, which is written in relation to the product's original validation report and Security Target. Readers are therefore reminded to read the Security Target, Validation Report, and the Assurance Maintenance Report to fully understand the meaning of what a maintained certificate represents.

PRODUCT DESCRIPTION

Feature Name: New Dashboard – Most Prevalent Vulnerabilities
TOE Version: 7.5
Description of Change: Adds a new dashboard to the Web Interface, which displays the ten vulnerabilities with the highest number of occurrences.

Feature Name: New Dashboard – Most Prevalent Operating Systems
TOE Version: 7.5
Description of Change: Adds a new dashboard to the Web Interface, which displays the ten operating systems with the highest number of occurrences, based on scanned assets.

Feature Name: New Dashboard – Vulnerability Count by Severity
TOE Version: 7.5
Description of Change: Adds a new dashboard to the Web Interface, which displays the number of High, Medium, Low, and Information vulnerabilities.

Feature Name: New Dashboard – Vulnerability percentage by Severity
TOE Version: 7.5
Description of Change: Provides a new monitor to the Web Interface that shows the percentage of High, Medium, Low, and Information vulnerabilities.

Feature Name: New Dashboard – Organization Vulnerability Count Trend
TOE Version: 7.5
Descritpion of Change: Adds a new dashboard to the Web Interface, which displays a trend graph of the High, Medium, Low, and Information vulnerabilities for the organization, over time.

Feature Name: IP7v6 Scanning
TOE Version: 7.5
Descritpion of Change: Allows scanning of target machines that have Internet Protocol version 6 (IPv6) addresses.

Feature Name: Scan Details Page
TOE Version: 7.5
Descritpion of Change: Adds a new page which shows the progress of different processing during a scan.

Feature Name: Asset Tags and Organization
TOE Version: 7.5
Descritpion of Change: Gives Organization administrators the ability to create, assign, remove, and delete a tag (or name) to an asset.

Feature Name: Vulnerability Sets
TOE Version: 7.5
Descritpion of Change: Allows creation of a vulnerability set to target which vulnerabilities to scan for and generate reports for.

Feature Name: SUDO8 Scanning
TOE Version: 7.5
Descritpion of Change: Allows users to use SUDO instead of SU9 for running individual commands in privileged mode.

Feature Name: New Email Notifications for Scan and Scan Engine Events
TOE Version: 7.5
Descritpion of Change: Three new scan email notifications and one scan engine email notification can be used.

Feature Name: Ports in Reports
TOE Version: 7.5
Descritpion of Change: For general vulnerabilities and web FSL10 checks, the port number, service, and protocol are now included in the Vulnerability Details and Vulnerabilities by IP report sections.

Feature Name: Gather diagnostic info and logs task
TOE Version: 7.5
Descritpion of Change: Gathers log files of the TOE and other information to assist in troubleshooting by customer support.

Feature Name: Apply registry tweaks task
Descritpion of Change: Scan controller preferences tab.

TOE Version: 7.5
Feature Name: Applies registry tweaks from an XML11 file.
Descritpion of Change: Sets the maximum number of concurrent connections a scan controller can make to the database.

Feature Name: Scan controller preferences tab
TOE Version: 7.5
Descritpion of Change: Sets the maximum number of concurrent connections a scan controller can make to the database.

Feature Name: Scan engine preferences tab
TOE Version: 7.5
Descritpion of Change: Sets the maximum amount of time allowed for a post operation to get a response before the scan engine times it out.

Vendor Information

logo
McAfee, Inc.
Chela Dias de Villegas
651-628-1642
chela_diazdevillegas@mcafee.com

http://www.mcafee.com