Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
symantec vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-37015
Symantec Endpoint Detection and Response (SEDR) Appliance, before 4.7.0, may be susceptible to a privilege escalation vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated access to resources that are norma...
Symantec Endpoint Detection And Response
NA
CVE-2022-25625
A malicious unauthorized PAM user can access the administration configuration data and change the values.
Broadcom Symantec Privileged Access Management
570
VMScore
CVE-2021-46825
Symantec Advanced Secure Gateway (ASG) and ProxySG are susceptible to an HTTP desync vulnerability. When a remote unauthenticated attacker and other web clients communicate through the proxy with the same web server, the attacker can send crafted HTTP requests and cause the proxy...
Broadcom Advanced Secure Gateway 6.7
Broadcom Proxysg 6.7
Broadcom Proxysg 7.3
Broadcom Advanced Secure Gateway 7.3
356
VMScore
CVE-2021-30651
A malicious authenticated SMG administrator user can obtain passwords for external LDAP/Active Directory servers that they might not otherwise be authorized to access.
Broadcom Symantec Messaging Gateway
864
VMScore
CVE-2022-30190
<p>A remote code execution vulnerability exists when MSDT is called using the URL protocol from a calling application such as Word. An attacker who successfully exploits this vulnerability can run arbitrary code with the privileges of the calling application. The attacker c...
Microsoft Windows Server 2012 R2
Microsoft Windows 10 1607
Microsoft Windows 8.1 -
Microsoft Windows Server 2016 -
Microsoft Windows Server 2008 -
Microsoft Windows Server 2008 R2
Microsoft Windows 7 -
Microsoft Windows Rt 8.1 -
Microsoft Windows Server 2012 -
Microsoft Windows 10 -
Microsoft Windows Server 2019 -
Microsoft Windows 10 1809
Microsoft Windows 10 20h2
Microsoft Windows 10 21h1
Microsoft Windows Server 2022 -
Microsoft Windows 11 -
Microsoft Windows 10 21h2
121 Github repositories
8 Articles
516
VMScore
CVE-2005-10001
A vulnerability was found in Netegrity SiteMinder up to 4.5.1 and classified as critical. Affected by this issue is the file /siteminderagent/pwcgi/smpwservicescgi.exe of the component Login. The manipulation of the argument target leads to an open redirect. The exploit has been ...
Broadcom Symantec Siteminder 4.5.0
Broadcom Symantec Siteminder 4.5.1
641
VMScore
CVE-2022-25623
The Symantec Management Agent is susceptible to a privilege escalation vulnerability. A low privilege local account can be elevated to the SYSTEM level through registry manipulations.
Symantec Management Agent 8.5
Symantec Management Agent 8.6
383
VMScore
CVE-2021-30650
A reflected cross-site scripting (XSS) vulnerability in the Symantec Layer7 API Management OAuth Toolkit (OTK) allows a remote malicious user to craft a malicious URL for the OTK web UI and target OTK users with phishing attacks or other social engineering techniques. A successfu...
Broadcom Layer7 Api Management Oauth Toolkit
312
VMScore
CVE-2021-29855
IBM Sterling B2B Integrator Standard Edition 5.2.0.0 up to and including 6.1.1.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials dis...
Ibm Sterling B2b Integrator
1 Article
801
VMScore
CVE-2021-30648
The Symantec Advanced Secure Gateway (ASG) and ProxySG web management consoles are susceptible to an authentication bypass vulnerability. An unauthenticated attacker can execute arbitrary CLI commands, view/modify the appliance configuration and policy, and shutdown/restart the a...
Broadcom Symantec Proxysg
Broadcom Symantec Advanced Secure Gateway S200-30 Firmware
Broadcom Symantec Advanced Secure Gateway S200-40 Firmware
Broadcom Symantec Advanced Secure Gateway S400-20 Firmware
Broadcom Symantec Advanced Secure Gateway S400-30 Firmware
Broadcom Symantec Advanced Secure Gateway S400-40 Firmware
Broadcom Symantec Advanced Secure Gateway 500-10 Firmware
Broadcom Symantec Advanced Secure Gateway S500-20 Firmware
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654
CVE-2024-2757
authentication bypass
CVE-2024-3194
CVE-2024-33640
CVE-2024-21111
dos
insecure direct object reference
CVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »