Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
symantec management console vulnerabilities and exploits
(subscribe to this query)
5.2
CVSSv2
CVE-2017-6323
The Symantec Management Console prior to ITMS 8.1 RU1, ITMS 8.0_POST_HF6, and ITMS 7.6_POST_HF7 has an issue whereby XML input containing a reference to an external entity is processed by a weakly configured XML parser. This attack may lead to the disclosure of confidential data,...
Symantec Management Console 7.6
Symantec Management Console
Symantec Management Console 8.0
5.2
CVSSv2
CVE-2017-15527
Prior to ITMS 8.1 RU4, the Symantec Management Console can be susceptible to a directory traversal exploit, which is a type of attack that can occur when there is insufficient security validation / sanitization of user-supplied input file names, such that characters representing ...
Symantec Management Console
5.8
CVSSv2
CVE-2015-8151
Symantec Encryption Management Server (SEMS) 3.3.2 before MP12 allows remote authenticated users to execute arbitrary OS commands by leveraging console administrator access.
Symantec Encryption Management Server
3.5
CVSSv2
CVE-2016-6588
A Cross-Site Scripting (XSS) vulnerability exists in the ITMS workflow process manager console in Symantec IT Management Suite 8.0.
Symantec It Management Suite 8.0
9.3
CVSSv2
CVE-2009-3033
Buffer overflow in the RunCmd method in the Altiris eXpress NS Console Utilities ActiveX control in AeXNSConsoleUtilities.dll in the web console in Symantec Altiris Deployment Solution 6.9.x, Altiris Notification Server 6.0.x, and Management Platform 7.0.x allows remote malicious...
Symantec Altiris Deployment Solution 6.9
Symantec Altiris Deployment Solution 6.9.355
Symantec Altiris Management Platform 7.0
Symantec Altiris Notification Server 6.0
Symantec Altiris Deployment Solution 6.9.164
Symantec Altiris Deployment Solution 6.9.176
Symantec Altiris Notification Server 6.0 Sp3
1 EDB exploit
4.3
CVSSv2
CVE-2007-5796
Cross-site scripting (XSS) vulnerability in the management console in Blue Coat ProxySG prior to 4.2.6.1, and 5.x prior to 5.2.2.5, allows remote malicious users to inject arbitrary web script or HTML by modifying the URL that is used for loading Certificate Revocation Lists.
Symantec Proxysg Firmware
1 EDB exploit
10
CVSSv2
CVE-2009-3027
VRTSweb.exe in VRTSweb in Symantec Backup Exec Continuous Protection Server (CPS) 11d, 12.0, and 12.5; Veritas NetBackup Operations Manager (NOM) 6.0 GA up to and including 6.5.5; Veritas Backup Reporter (VBR) 6.0 GA up to and including 6.6; Veritas Storage Foundation (SF) 3.5; V...
Symantec Veritas Backup Exec 11d
Symantec Veritas Backup Exec 12.0
Symantec Veritas Storage Foundation For Sybase 5.0
Symantec Veritas Storage Foundation For Oracle Real Application Cluster 5.0
Symantec Veritas Storage Foundation For Oracle Real Application Cluster 4.1
Symantec Veritas Storage Foundation For Windows High Availability 4.3mp2
Symantec Veritas Netbackup Operations Manager 6.5.5
Symantec Veritas Netbackup Reporter 6.0 Ga
Symantec Veritas Storage Foundation For Windows High Availability 5.1
Symantec Veritas Storage Foundation For Windows High Availability 5.0rp2
Symantec Veritas Storage Foundation For Db2 4.1
Symantec Veritas Storage Foundation Manager 1.1
Symantec Veritas Storage Foundation Manager 1.1.1ux
Symantec Veritas Cluster Server 4.1
Symantec Veritas Cluster Server One 2.0.2
Symantec Veritas Application Director 1.1
Symantec Veritas Storage Foundation Cluster File System 5.0
Symantec Veritas Storage Foundation Cluster File System 4.1
Symantec Veritas Storage Foundation Cluster File System 4.0
Symantec Veritas Command Central Enterprise Reporter 5.0mp1
Symantec Veritas Command Central Enterprise Reporter 5.0mp1rp1
Symantec Veritas Netbackup Reporter 6.6
5.8
CVSSv2
CVE-2013-4673
The management console on the Symantec Web Gateway (SWG) appliance prior to 5.1.1 does not properly implement RADIUS authentication, which allows remote malicious users to execute arbitrary code by leveraging access to the login prompt.
Symantec Web Gateway 5.0.3.18
Symantec Web Gateway
Symantec Web Gateway 5.0
Symantec Web Gateway 5.0.1
Symantec Web Gateway 5.0.2
Symantec Web Gateway 5.0.3
Symantec Web Gateway Appliance 8450 -
Symantec Web Gateway Appliance 8490 -
7.5
CVSSv2
CVE-2011-0553
SQL injection vulnerability in the management console in Symantec IM Manager prior to 8.4.18 allows remote malicious users to execute arbitrary SQL commands via unspecified vectors.
Symantec Im Manager 8.4.8
Symantec Im Manager 8.4.9
Symantec Im Manager 6.5
Symantec Im Manager 8.3
Symantec Im Manager 8.4.5
Symantec Im Manager 8.4.6
Symantec Im Manager 8.4.7
Symantec Im Manager 8.4.15
Symantec Im Manager 8.4.13
Symantec Im Manager
Symantec Im Manager 8.4.10
Symantec Im Manager 8.4.0
Symantec Im Manager 6.0
Symantec Im Manager 8.4.16
Symantec Im Manager 8.4.1
Symantec Im Manager 8.4.2
Symantec Im Manager 8.4.12
Symantec Im Manager 8.4.11
Symantec Im Manager 7.5
Symantec Im Manager 7.0
7.5
CVSSv2
CVE-2011-0554
The management console in Symantec IM Manager prior to 8.4.18 allows remote malicious users to execute arbitrary code via unspecified vectors, related to a "code injection issue."
Symantec Im Manager 8.4.2
Symantec Im Manager 8.4.5
Symantec Im Manager 8.4.12
Symantec Im Manager 8.4.11
Symantec Im Manager 7.5
Symantec Im Manager 7.0
Symantec Im Manager 8.4.1
Symantec Im Manager 8.4.10
Symantec Im Manager 8.4.0
Symantec Im Manager 6.0
Symantec Im Manager 8.4.16
Symantec Im Manager 8.4.6
Symantec Im Manager 8.4.7
Symantec Im Manager 8.4.15
Symantec Im Manager 8.4.13
Symantec Im Manager
Symantec Im Manager 8.4.8
Symantec Im Manager 8.4.9
Symantec Im Manager 6.5
Symantec Im Manager 8.3
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2006-4304
CVE-2024-4240
arbitrary
CVE-2024-31601
XSS
CVE-2023-20198
CVE-2024-4256
CVE-2024-3342
encryption
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »