Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
symantec endpoint protection vulnerabilities and exploits
(subscribe to this query)
605
VMScore
CVE-2018-12244
SEP (Mac client) prior to and including 12.1 RU6 MP9 and before 14.2 RU1 may be susceptible to a CSV/DDE injection (also known as formula injection) vulnerability, which is a type of issue whereby an application or website allows untrusted input into CSV files.
Symantec Endpoint Protection 14.2
Symantec Endpoint Protection 14.0.1
Symantec Endpoint Protection 12.1
Symantec Endpoint Protection 11.0
Symantec Endpoint Protection 14.0.0
Symantec Endpoint Protection 14
605
VMScore
CVE-2018-18369
Norton Security (Windows client) before 22.16.3 and SEP SBE (Windows client) prior to Cloud Agent 3.00.31.2817, NIS-22.15.2.22 & SEP-12.1.7484.7002, may be susceptible to a DLL Preloading vulnerability, which is a type of issue that can occur when an application looks to call...
Symantec Norton Security
Symantec Endpoint Protection Cloud Agent
Symantec Endpoint Protection Sep-12.1.7484.7002
Symantec Endpoint Protection Nis-22.15.2.22
Symantec Endpoint Protection Cloud
409
VMScore
CVE-2018-12238
Norton before 22.15; Symantec Endpoint Protection (SEP) before 12.1.7454.7000 & 14.2; Symantec Endpoint Protection Small Business Edition (SEP SBE) prior to NIS-22.15.1.8 & SEP-12.1.7454.7000; and Symantec Endpoint Protection Cloud (SEP Cloud) before 22.15.1 may be suscep...
Symantec Endpoint Protection Cloud
Symantec Endpoint Protection
Symantec Norton Antivirus
409
VMScore
CVE-2018-12239
Norton before 22.15; Symantec Endpoint Protection (SEP) before 12.1.7454.7000 & 14.2; Symantec Endpoint Protection Small Business Edition (SEP SBE) prior to NIS-22.15.1.8 & SEP-12.1.7454.7000; and Symantec Endpoint Protection Cloud (SEP Cloud) before 22.15.1 may be suscep...
Symantec Endpoint Protection
Symantec Norton Antivirus
Symantec Endpoint Protection Cloud
605
VMScore
CVE-2018-12245
Symantec Endpoint Protection before 14.2 MP1 may be susceptible to a DLL Preloading vulnerability, which in this case is an issue that can occur when an application being installed unintentionally loads a DLL provided by a potential attacker. Note that this particular type of exp...
Symantec Endpoint Protection
312
VMScore
CVE-2018-5236
Symantec Endpoint Protection before 14 RU1 MP1 or 12.1 RU6 MP10 may be susceptible to a race condition (or race hazard). This type of issue occurs in software where the output is dependent on the sequence or timing of other uncontrollable events.
Symantec Endpoint Protection 12.1
Symantec Endpoint Protection 14.0
Symantec Endpoint Protection
578
VMScore
CVE-2018-5237
Symantec Endpoint Protection before 14 RU1 MP1 or 12.1 RU6 MP10 could be susceptible to a privilege escalation vulnerability, which is a type of issue that allows a user to gain elevated access to resources that are normally protected at lower access levels.
Symantec Endpoint Protection 12.1
Symantec Endpoint Protection 14.0
Symantec Endpoint Protection
614
VMScore
CVE-2016-9093
A version of the SymEvent Driver that shipped with Symantec Endpoint Protection 12.1 RU6 MP6 and previous versions fails to properly sanitize logged-in user input. SEP 14.0 and later are not impacted by this issue. A non-admin user would need to be able to save an executable file...
Symantec Endpoint Protection
Symantec Endpoint Protection 12.1.6
605
VMScore
CVE-2016-9094
Symantec Endpoint Protection clients place detected malware in quarantine as part of the intended product functionality. The quarantine logs can be exported for review by the user in a variety of formats including .CSV files. before 14.0 MP1 and 12.1 RU6 MP7, the potential exists...
Symantec Endpoint Protection 12.1.6
Symantec Endpoint Protection
320
VMScore
CVE-2017-13680
Prior to SEP 12.1 RU6 MP9 & SEP 14 RU1 Symantec Endpoint Protection Windows endpoint can encounter a situation whereby an attacker could use the product's UI to perform unauthorized file deletes on the resident file system.
Symantec Endpoint Protection
Symantec Endpoint Protection 14
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »