Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
symantec endpoint protection vulnerabilities and exploits
(subscribe to this query)
8
CVSSv3
CVE-2016-3653
Multiple cross-site request forgery (CSRF) vulnerabilities in management scripts in Symantec Endpoint Protection Manager (SEPM) 12.1 before RU6 MP5 allow remote authenticated users to hijack the authentication of arbitrary users.
Symantec Endpoint Protection Manager
1 EDB exploit
8
CVSSv3
CVE-2016-3651
Symantec Endpoint Protection Manager (SEPM) 12.1 before RU6 MP5 allows remote authenticated users to discover the PHP JSESSIONID value via unspecified vectors.
Symantec Endpoint Protection Manager
8
CVSSv3
CVE-2015-8152
Cross-site request forgery (CSRF) vulnerability in Symantec Endpoint Protection Manager (SEPM) 12.1 before RU6-MP4 allows remote authenticated users to hijack the authentication of administrators for requests that execute arbitrary code by adding lines to a logging script.
Symantec Endpoint Protection Manager
1 Article
7.8
CVSSv3
CVE-2022-25631
Symantec Endpoint Protection, before 14.3 RU6 (14.3.9210.6000), may be susceptible to a Elevation of Privilege vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated
Broadcom Symantec Endpoint Protection
7.8
CVSSv3
CVE-2020-5837
Symantec Endpoint Protection, before 14.3, may not respect file permissions when writing to log files that are replaced by symbolic links, which can lead to a potential elevation of privilege.
Symantec Endpoint Protection
1 Github repository
7.8
CVSSv3
CVE-2020-5836
Symantec Endpoint Protection, before 14.3, can potentially reset the ACLs on a file as a limited user while Symantec Endpoint Protection's Tamper Protection feature is disabled.
Symantec Endpoint Protection
7.8
CVSSv3
CVE-2020-5822
Symantec Endpoint Protection (SEP) and Symantec Endpoint Protection Small Business Edition (SEP SBE), before 14.2 RU2 MP1 and before 14.2.5569.2100 respectively, may be susceptible to a privilege escalation vulnerability, which is a type of issue whereby an attacker may attempt t...
Symantec Endpoint Protection 11.0
Symantec Endpoint Protection 12.1
Symantec Endpoint Protection 14.0.0
Symantec Endpoint Protection 14.0.1
Symantec Endpoint Protection 14.2
Symantec Endpoint Protection 12.0
7.8
CVSSv3
CVE-2020-5820
Symantec Endpoint Protection (SEP) and Symantec Endpoint Protection Small Business Edition (SEP SBE), before 14.2 RU2 MP1 and before 14.2.5569.2100 respectively, may be susceptible to a privilege escalation vulnerability, which is a type of issue whereby an attacker may attempt t...
Symantec Endpoint Protection 11.0
Symantec Endpoint Protection 12.1
Symantec Endpoint Protection 14.0.0
Symantec Endpoint Protection 14.0.1
Symantec Endpoint Protection 14.2
Symantec Endpoint Protection 12.0
7.8
CVSSv3
CVE-2020-5821
Symantec Endpoint Protection (SEP) and Symantec Endpoint Protection Small Business Edition (SEP SBE), before 14.2 RU2 MP1 and before 14.2.5569.2100 respectively, may be susceptible to a DLL injection vulnerability, which is a type of issue whereby an individual attempts to execut...
Symantec Endpoint Protection 11.0
Symantec Endpoint Protection 12.1
Symantec Endpoint Protection 14.0.0
Symantec Endpoint Protection 14.0.1
Symantec Endpoint Protection 14.2
Symantec Endpoint Protection 12.0
7.8
CVSSv3
CVE-2020-5823
Symantec Endpoint Protection (SEP) and Symantec Endpoint Protection Small Business Edition (SEP SBE), before 14.2 RU2 MP1 and before 14.2.5569.2100 respectively, may be susceptible to a privilege escalation vulnerability, which is a type of issue whereby an attacker may attempt t...
Symantec Endpoint Protection 11.0
Symantec Endpoint Protection 12.1
Symantec Endpoint Protection 14.0.0
Symantec Endpoint Protection 14.0.1
Symantec Endpoint Protection 14.2
Symantec Endpoint Protection 12.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4651
CVE-2024-34255
elevation of privilege
CVE-2024-25529
CVE-2024-4671
NULL pointer dereference
CVE-2024-25527
template injection
CVE-2008-0166
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »