Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
symantec endpoint protection vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2014-3437
The management console in Symantec Endpoint Protection Manager (SEPM) 12.1 before RU5 allows remote malicious users to read arbitrary files or send TCP requests to intranet servers via XML data containing an external entity declaration in conjunction with an entity reference, rel...
Symantec Endpoint Protection Manager 12.1.0
Symantec Endpoint Protection Manager 12.1.1
Symantec Endpoint Protection Manager 12.1.3
Symantec Endpoint Protection Manager
Symantec Endpoint Protection Manager 12.1.2
1 EDB exploit
4.3
CVSSv2
CVE-2014-3438
Multiple cross-site scripting (XSS) vulnerabilities in console interface scripts in Symantec Endpoint Protection Manager (SEPM) 12.1 before RU5 allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Symantec Endpoint Protection Manager 12.1.0
Symantec Endpoint Protection Manager 12.1.1
Symantec Endpoint Protection Manager 12.1.3
Symantec Endpoint Protection Manager
Symantec Endpoint Protection Manager 12.1.2
1 EDB exploit
6.1
CVSSv2
CVE-2014-3439
ConsoleServlet in Symantec Endpoint Protection Manager (SEPM) 12.1 before RU5 allows remote malicious users to write to arbitrary files via unspecified vectors.
Symantec Endpoint Protection Manager 12.1.0
Symantec Endpoint Protection Manager 12.1.1
Symantec Endpoint Protection Manager 12.1.3
Symantec Endpoint Protection Manager
Symantec Endpoint Protection Manager 12.1.2
1 EDB exploit
7.5
CVSSv2
CVE-2013-5014
The management console in Symantec Endpoint Protection Manager (SEPM) 11.0 prior to 11.0.7405.1424 and 12.1 prior to 12.1.4023.4080, and Symantec Protection Center Small Business Edition 12.x prior to 12.1.4023.4080, allows remote malicious users to read arbitrary files via XML d...
Symantec Protection Center 12.0
Symantec Endpoint Protection Manager 11.0
Symantec Endpoint Protection Manager 12.1.0
Symantec Endpoint Protection Manager 12.1.1
Symantec Endpoint Protection Manager 12.1.3
Symantec Endpoint Protection Manager 12.1.2
2 EDB exploits
6.5
CVSSv2
CVE-2013-5015
SQL injection vulnerability in the management console in Symantec Endpoint Protection Manager (SEPM) 11.0 prior to 11.0.7405.1424 and 12.1 prior to 12.1.4023.4080, and Symantec Protection Center Small Business Edition 12.x prior to 12.1.4023.4080, allows remote authenticated user...
Symantec Protection Center 12.0
Symantec Endpoint Protection Manager 11.0
Symantec Endpoint Protection Manager 12.1.0
Symantec Endpoint Protection Manager 12.1.1
Symantec Endpoint Protection Manager 12.1.3
Symantec Endpoint Protection Manager 12.1.2
2 EDB exploits
7.9
CVSSv2
CVE-2013-1612
Buffer overflow in secars.dll in the management console in Symantec Endpoint Protection Manager (SEPM) 12.1.x prior to 12.1.3, and Symantec Endpoint Protection Center (SPC) Small Business Edition 12.0.x, allows remote malicious users to execute arbitrary code via unspecified vect...
Symantec Endpoint Protection Manager 12.1.0
Symantec Endpoint Protection Manager 12.1.1
Symantec Endpoint Protection Manager 12.1.2
Symantec Endpoint Protection Center 12.0.1
Symantec Endpoint Protection Center 12.0.0
1 EDB exploit
6.8
CVSSv2
CVE-2018-18367
Symantec Endpoint Protection Manager (SEPM) prior to and including 12.1 RU6 MP9 and before 14.2 RU1 may be susceptible to a DLL Preloading vulnerability, which is a type of issue that can occur when an application looks to call a DLL for execution and an attacker provides a malic...
Symantec Endpoint Protection Manager 14.2
Symantec Endpoint Protection Manager 14.0.1
Symantec Endpoint Protection Manager 14.1
Symantec Endpoint Protection Manager 14
Symantec Endpoint Protection Manager 12.1
6.5
CVSSv2
CVE-2018-5237
Symantec Endpoint Protection before 14 RU1 MP1 or 12.1 RU6 MP10 could be susceptible to a privilege escalation vulnerability, which is a type of issue that allows a user to gain elevated access to resources that are normally protected at lower access levels.
Symantec Endpoint Protection
Symantec Endpoint Protection 12.1
Symantec Endpoint Protection 14.0
3.5
CVSSv2
CVE-2018-5236
Symantec Endpoint Protection before 14 RU1 MP1 or 12.1 RU6 MP10 may be susceptible to a race condition (or race hazard). This type of issue occurs in software where the output is dependent on the sequence or timing of other uncontrollable events.
Symantec Endpoint Protection
Symantec Endpoint Protection 12.1
Symantec Endpoint Protection 14.0
5
CVSSv2
CVE-2010-3268
The GetStringAMSHandler function in prgxhndl.dll in hndlrsvc.exe in the Intel Alert Handler service (aka Symantec Intel Handler service) in Intel Alert Management System (AMS), as used in Symantec Antivirus Corporate Edition 10.1.4.4010 on Windows 2000 SP4 and Symantec Endpoint P...
Intel Intel Alert Management System
Symantec Antivirus 10.1.4.4010
Symantec Endpoint Protection 11.0.4
Symantec Endpoint Protection 11.0.2
Symantec Endpoint Protection 11.0
Symantec Endpoint Protection 11.0.1
Symantec Endpoint Protection 11.0.3001
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »