Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
broadcom symantec critical system protection vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2019-18374
Symantec Critical System Protection (CSP), versions 8.0, 8.0 HF1 & 8.0 MP1, may be susceptible to an authentication bypass vulnerability, which is a type of issue that can potentially allow a threat actor to circumvent existing authentication controls.
Broadcom Symantec Critical System Protection 8.0.0
8.8
CVSSv3
CVE-2015-8157
SQL injection vulnerability in the Management Server in Symantec Embedded Security: Critical System Protection (SES:CSP) 1.0.x prior to 1.0 MP5, Embedded Security: Critical System Protection for Controllers and Devices (SES:CSP) 6.5.0 before MP1, Critical System Protection (SCSP)...
Broadcom Symantec Critical System Protection
Broadcom Symantec Data Center Security Server 6.5.0
Broadcom Symantec Data Center Security Server 6.6.0
Broadcom Symantec Data Center Security Server And Agents
Broadcom Symantec Embedded Security Critical System Protection
Broadcom Symantec Embedded Security Critical System Protection For Controllers And Devices
8
CVSSv3
CVE-2015-8798
Directory traversal vulnerability in the Management Server in Symantec Embedded Security: Critical System Protection (SES:CSP) 1.0.x prior to 1.0 MP5, Embedded Security: Critical System Protection for Controllers and Devices (SES:CSP) 6.5.0 before MP1, Critical System Protection ...
Broadcom Symantec Data Center Security Server 6.5.0
Broadcom Symantec Data Center Security Server 6.6.0
Broadcom Symantec Data Center Security Server And Agents
Broadcom Symantec Critical System Protection
Broadcom Symantec Embedded Security Critical System Protection
Broadcom Symantec Embedded Security Critical System Protection For Controllers And Devices
7.6
CVSSv3
CVE-2015-8799
Directory traversal vulnerability in the Management Server in Symantec Embedded Security: Critical System Protection (SES:CSP) 1.0.x prior to 1.0 MP5, Embedded Security: Critical System Protection for Controllers and Devices (SES:CSP) 6.5.0 before MP1, Critical System Protection ...
Broadcom Symantec Critical System Protection
Broadcom Symantec Data Center Security Server
Broadcom Symantec Data Center Security Server 6.5.0
Broadcom Symantec Data Center Security Server 6.6.0
Broadcom Symantec Data Center Security Server And Agents 6.6.0
Broadcom Symantec Embedded Security Critical System Protection
Broadcom Symantec Embedded Security Critical System Protection For Controllers And Devices 6.5.0
7.3
CVSSv3
CVE-2015-8800
Symantec Embedded Security: Critical System Protection (SES:CSP) 1.0.x prior to 1.0 MP5, Embedded Security: Critical System Protection for Controllers and Devices (SES:CSP) 6.5.0 before MP1, Critical System Protection (SCSP) prior to 5.2.9 MP6, Data Center Security: Server Advanc...
Broadcom Symantec Critical System Protection 5.2.9
Broadcom Symantec Data Center Security Server 6.5.0
Broadcom Symantec Data Center Security Server 6.6.0
Broadcom Symantec Data Center Security Server And Agents 6.6.0
Broadcom Symantec Embedded Security Critical System Protection 1.0
Broadcom Symantec Embedded Security Critical System Protection For Controllers And Devices 6.5.0
NA
CVE-2014-7289
SQL injection vulnerability in the management server in Symantec Critical System Protection (SCSP) 5.2.9 before MP6 and Symantec Data Center Security: Server Advanced (SDCS:SA) 6.0.x prior to 6.0 MP1 allows remote authenticated users to execute arbitrary SQL commands via a crafte...
Broadcom Symantec Critical System Protection 5.2.9
Symantec Data Center Security 6.0.0
1 EDB exploit
1 Article
NA
CVE-2014-3440
The Agent Control Interface in the management server in Symantec Critical System Protection (SCSP) 5.2.9 before MP6 and Symantec Data Center Security: Server Advanced (SDCS:SA) 6.0.x prior to 6.0 MP1 allows remote authenticated users to execute arbitrary commands by leveraging cl...
Broadcom Symantec Critical System Protection 5.2.9
Symantec Data Center Security 6.0.0
NA
CVE-2014-9224
Cross-site scripting (XSS) vulnerability in the ajaxswing webui in the Management Console server in the management server in Symantec Critical System Protection (SCSP) 5.2.9 through MP6 and Symantec Data Center Security: Server Advanced (SDCS:SA) 6.0.x up to and including 6.0 MP1...
Broadcom Symantec Critical System Protection 5.2.9
Symantec Data Center Security 6.0.0
1 EDB exploit
1 Article
NA
CVE-2014-9225
The ajaxswing webui in the management server in Symantec Critical System Protection (SCSP) 5.2.9 through MP6 and Symantec Data Center Security: Server Advanced (SDCS:SA) 6.0.x up to and including 6.0 MP1 allows remote authenticated users to obtain sensitive server information via...
Broadcom Symantec Critical System Protection 5.2.9
Symantec Data Center Security 6.0.0
1 EDB exploit
1 Article
NA
CVE-2014-9226
The management server in Symantec Critical System Protection (SCSP) 5.2.9 through MP6 and Symantec Data Center Security: Server Advanced (SDCS:SA) 6.0.x up to and including 6.0 MP1 allows local users to bypass intended Protection Policies via unspecified vectors.
Broadcom Symantec Critical System Protection 5.2.9
Symantec Data Center Security 6.0.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32886
insecure direct object reference
CVE-2024-34342
file inclusion
CVE-2024-34562
CVE-2024-34347
CVE-2024-26026
CVE-2024-4647
unprivileged
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »