Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
symantec endpoint protection vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2020-5824
Symantec Endpoint Protection (SEP) and Symantec Endpoint Protection Small Business Edition (SEP SBE), before 14.2 RU2 MP1 and before 14.2.5569.2100 respectively, may be susceptible to a denial of service vulnerability, which is a type of issue whereby a threat actor attempts to t...
Symantec Endpoint Protection 11.0
Symantec Endpoint Protection 12.1
Symantec Endpoint Protection 14.0.0
Symantec Endpoint Protection 14.0.1
Symantec Endpoint Protection 14.2
Symantec Endpoint Protection 12.0
5.5
CVSSv3
CVE-2020-5825
Symantec Endpoint Protection (SEP) and Symantec Endpoint Protection Small Business Edition (SEP SBE), before 14.2 RU2 MP1 and before 14.2.5569.2100 respectively, may be susceptible to an arbitrary file write vulnerability, which is a type of issue whereby an attacker is able to o...
Symantec Endpoint Protection 11.0
Symantec Endpoint Protection 12.1
Symantec Endpoint Protection 14.0.0
Symantec Endpoint Protection 14.0.1
Symantec Endpoint Protection 14.2
Symantec Endpoint Protection 12.0
2 Github repositories
5.5
CVSSv3
CVE-2020-5826
Symantec Endpoint Protection (SEP) and Symantec Endpoint Protection Small Business Edition (SEP SBE), before 14.2 RU2 MP1 and before 14.2.5569.2100 respectively, may be susceptible to an out of bounds vulnerability, which is a type of issue that results in an existing application...
Symantec Endpoint Protection 11.0
Symantec Endpoint Protection 12.1
Symantec Endpoint Protection 14.0.0
Symantec Endpoint Protection 14.0.1
Symantec Endpoint Protection 14.2
Symantec Endpoint Protection 12.0
7.8
CVSSv3
CVE-2019-12757
Symantec Endpoint Protection (SEP), before 14.2 RU2 & 12.1 RU6 MP10 and Symantec Endpoint Protection Small Business Edition (SEP SBE) before 12.1 RU6 MP10d (12.1.7510.7002), may be susceptible to a privilege escalation vulnerability, which is a type of issue whereby an attack...
Symantec Endpoint Protection 11.0
Symantec Endpoint Protection 12.1
Symantec Endpoint Protection 14.0.0
Symantec Endpoint Protection 14.0.1
Symantec Endpoint Protection 14.2
Symantec Endpoint Protection 12.0
6.3
CVSSv3
CVE-2018-12244
SEP (Mac client) prior to and including 12.1 RU6 MP9 and before 14.2 RU1 may be susceptible to a CSV/DDE injection (also known as formula injection) vulnerability, which is a type of issue whereby an application or website allows untrusted input into CSV files.
Symantec Endpoint Protection 14.2
Symantec Endpoint Protection 14.0.1
Symantec Endpoint Protection 12.1
Symantec Endpoint Protection 11.0
Symantec Endpoint Protection 14.0.0
Symantec Endpoint Protection 14
2.3
CVSSv3
CVE-2019-12756
Symantec Endpoint Protection (SEP), before 14.2 RU2 may be susceptible to a password protection bypass vulnerability whereby the secondary layer of password protection could by bypassed for individuals with local administrator rights.
Symantec Endpoint Protection 11.0
Symantec Endpoint Protection 12.1
Symantec Endpoint Protection 14.0.0
Symantec Endpoint Protection 14.0.1
Symantec Endpoint Protection 14.2
NA
CVE-2011-0550
Multiple cross-site scripting (XSS) vulnerabilities in the Web Interface in the Endpoint Protection Manager in Symantec Endpoint Protection (SEP) 11.0.600x up to and including 11.0.6300 allow remote malicious users to inject arbitrary web script or HTML via (1) the token paramete...
Symantec Endpoint Protection 11.0.6200.754
Symantec Endpoint Protection 11.0.6000
Symantec Endpoint Protection 11.0.6100
Symantec Endpoint Protection 11.0.6300
Symantec Endpoint Protection 11.0.6200
NA
CVE-2010-0114
fw_charts.php in the reporting module in the Manager (aka SEPM) component in Symantec Endpoint Protection (SEP) 11.x prior to 11 RU6 MP2 allows remote malicious users to bypass intended restrictions on report generation, overwrite arbitrary PHP scripts, and execute arbitrary code...
Symantec Endpoint Protection 11.0
Symantec Endpoint Protection 11.0.1
Symantec Endpoint Protection 11.0.4
Symantec Endpoint Protection 11.0.2
Symantec Endpoint Protection 11.0.3001
NA
CVE-2011-0551
Cross-site request forgery (CSRF) vulnerability in the Web Interface in the Endpoint Protection Manager in Symantec Endpoint Protection (SEP) 11.0.600x up to and including 11.0.6300 allows remote malicious users to hijack the authentication of administrators for requests that cre...
Symantec Endpoint Protection 11.0.6200
Symantec Endpoint Protection 11.0.6200.754
Symantec Endpoint Protection 11.0.6000
Symantec Endpoint Protection 11.0.6100
Symantec Endpoint Protection 11.0.6300
NA
CVE-2010-3268
The GetStringAMSHandler function in prgxhndl.dll in hndlrsvc.exe in the Intel Alert Handler service (aka Symantec Intel Handler service) in Intel Alert Management System (AMS), as used in Symantec Antivirus Corporate Edition 10.1.4.4010 on Windows 2000 SP4 and Symantec Endpoint P...
Intel Intel Alert Management System
Symantec Antivirus 10.1.4.4010
Symantec Endpoint Protection 11.0.1
Symantec Endpoint Protection 11.0.4
Symantec Endpoint Protection 11.0
Symantec Endpoint Protection 11.0.2
Symantec Endpoint Protection 11.0.3001
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »