Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
symantec endpoint protection vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2015-1486
The management console in Symantec Endpoint Protection Manager (SEPM) 12.1 prior to 12.1-RU6-MP1 allows remote malicious users to bypass authentication via a crafted password-reset action that triggers a new administrative session.
Symantec Endpoint Protection Manager 12.1.0
1 EDB exploit
755
VMScore
CVE-2014-3437
The management console in Symantec Endpoint Protection Manager (SEPM) 12.1 before RU5 allows remote malicious users to read arbitrary files or send TCP requests to intranet servers via XML data containing an external entity declaration in conjunction with an entity reference, rel...
Symantec Endpoint Protection Manager 12.1.1
Symantec Endpoint Protection Manager 12.1.2
Symantec Endpoint Protection Manager 12.1.0
Symantec Endpoint Protection Manager 12.1.3
Symantec Endpoint Protection Manager
1 EDB exploit
739
VMScore
CVE-2015-8153
SQL injection vulnerability in Symantec Endpoint Protection Manager (SEPM) 12.1 before RU6-MP4 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
Symantec Endpoint Protection Manager
1 Article
725
VMScore
CVE-2012-0289
Buffer overflow in Symantec Endpoint Protection (SEP) 11.0.600x up to and including 11.0.710x and Symantec Network Access Control (SNAC) 11.0.600x up to and including 11.0.710x allows local users to gain privileges, and modify data or cause a denial of service, via a crafted scri...
Symantec Endpoint Protection 11.0.7000
Symantec Endpoint Protection 11.0.7100
Symantec Endpoint Protection 11.0.6100
Symantec Endpoint Protection 11.0.6200
Symantec Endpoint Protection 11.0.6200.754
Symantec Endpoint Protection 11.0.6300
Symantec Endpoint Protection 11.0.6000
Symantec Network Access Control 11.0.7100
Symantec Network Access Control 11.0.6100
Symantec Network Access Control 11.0.6200
Symantec Network Access Control 11.0.6300
Symantec Network Access Control 11.0.7000
Symantec Network Access Control 11.0.6000
1 EDB exploit
695
VMScore
CVE-2014-3434
Buffer overflow in the sysplant driver in Symantec Endpoint Protection (SEP) Client 11.x and 12.x prior to 12.1 RU4 MP1b, and Small Business Edition before SEP 12.1, allows local users to execute arbitrary code via a long argument to a 0x00222084 IOCTL call.
Symantec Endpoint Protection 11.0
Symantec Endpoint Protection 12.0
Symantec Endpoint Protection 12.1
1 EDB exploit
1 Article
668
VMScore
CVE-2015-6554
Symantec Endpoint Protection Manager (SEPM) 12.1 prior to 12.1-RU6-MP3 allows remote malicious users to execute arbitrary OS commands via crafted data.
Symantec Endpoint Protection Manager
668
VMScore
CVE-2010-0114
fw_charts.php in the reporting module in the Manager (aka SEPM) component in Symantec Endpoint Protection (SEP) 11.x prior to 11 RU6 MP2 allows remote malicious users to bypass intended restrictions on report generation, overwrite arbitrary PHP scripts, and execute arbitrary code...
Symantec Endpoint Protection 11.0
Symantec Endpoint Protection 11.0.1
Symantec Endpoint Protection 11.0.4
Symantec Endpoint Protection 11.0.2
Symantec Endpoint Protection 11.0.3001
660
VMScore
CVE-2013-5015
SQL injection vulnerability in the management console in Symantec Endpoint Protection Manager (SEPM) 11.0 prior to 11.0.7405.1424 and 12.1 prior to 12.1.4023.4080, and Symantec Protection Center Small Business Edition 12.x prior to 12.1.4023.4080, allows remote authenticated user...
Symantec Endpoint Protection Manager 11.0
Symantec Protection Center 12.0
Symantec Endpoint Protection Manager 12.1.0
Symantec Endpoint Protection Manager 12.1.1
Symantec Endpoint Protection Manager 12.1.2
Symantec Endpoint Protection Manager 12.1.3
2 EDB exploits
659
VMScore
CVE-2013-5009
The Management Console in Symantec Endpoint Protection (SEP) 11.x prior to 11.0.7.4 and 12.x prior to 12.1.2 RU2 and Endpoint Protection Small Business Edition 12.x prior to 12.1.2 RU2 does not properly perform authentication, which allows remote authenticated users to gain privi...
Symantec Endpoint Protection 11.0
Symantec Endpoint Protection 11.0.1
Symantec Endpoint Protection 11.0.2
Symantec Endpoint Protection 11.0.6100
Symantec Endpoint Protection 11.0.6200
Symantec Endpoint Protection 11.0.4
Symantec Endpoint Protection 11.0.7000
Symantec Endpoint Protection 11.0.7100
Symantec Endpoint Protection
Symantec Endpoint Protection 11.0.6000
Symantec Endpoint Protection 11.0.3001
Symantec Endpoint Protection 11.0.6200.754
Symantec Endpoint Protection 11.0.6300
641
VMScore
CVE-2019-12758
Symantec Endpoint Protection, before 14.2 RU2, may be susceptible to an unsigned code execution vulnerability, which may allow an individual to execute code without a resident proper digital signature.
Symantec Endpoint Protection
Symantec Endpoint Protection 14.2
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site scripting
CVE-2024-5158
XML external entity
CVE-2024-4262
CVE-2024-2036
CVE-2024-4985
CVE-2024-21791
remote attackers
CVE-2023-43208
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »