Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
symantec endpoint protection vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2012-0294
Directory traversal vulnerability in the Manager service in the management console in Symantec Endpoint Protection (SEP) 12.1 prior to 12.1 RU1-MP1 allows remote malicious users to delete files via unspecified vectors.
Symantec Endpoint Protection 12.1.671
Symantec Endpoint Protection 12.1
Symantec Endpoint Protection 12.1.1000
NA
CVE-2012-0295
The Manager service in the management console in Symantec Endpoint Protection (SEP) 12.1 prior to 12.1 RU1-MP1 allows remote malicious users to conduct file-insertion attacks and execute arbitrary code by leveraging exploitation of CVE-2012-0294.
Symantec Endpoint Protection 12.1.671
Symantec Endpoint Protection 12.1
Symantec Endpoint Protection 12.1.1000
NA
CVE-2014-3434
Buffer overflow in the sysplant driver in Symantec Endpoint Protection (SEP) Client 11.x and 12.x prior to 12.1 RU4 MP1b, and Small Business Edition before SEP 12.1, allows local users to execute arbitrary code via a long argument to a 0x00222084 IOCTL call.
Symantec Endpoint Protection 11.0
Symantec Endpoint Protection 12.1
Symantec Endpoint Protection 12.0
1 EDB exploit
1 Article
7.8
CVSSv3
CVE-2018-18369
Norton Security (Windows client) before 22.16.3 and SEP SBE (Windows client) prior to Cloud Agent 3.00.31.2817, NIS-22.15.2.22 & SEP-12.1.7484.7002, may be susceptible to a DLL Preloading vulnerability, which is a type of issue that can occur when an application looks to call...
Symantec Endpoint Protection Sep-12.1.7484.7002
Symantec Endpoint Protection Nis-22.15.2.22
Symantec Endpoint Protection Cloud
Symantec Norton Security
Symantec Endpoint Protection Cloud Agent
NA
CVE-2012-0289
Buffer overflow in Symantec Endpoint Protection (SEP) 11.0.600x up to and including 11.0.710x and Symantec Network Access Control (SNAC) 11.0.600x up to and including 11.0.710x allows local users to gain privileges, and modify data or cause a denial of service, via a crafted scri...
Symantec Endpoint Protection 11.0.6300
Symantec Endpoint Protection 11.0.7000
Symantec Endpoint Protection 11.0.6200.754
Symantec Endpoint Protection 11.0.7100
Symantec Endpoint Protection 11.0.6100
Symantec Endpoint Protection 11.0.6000
Symantec Endpoint Protection 11.0.6200
Symantec Network Access Control 11.0.6000
Symantec Network Access Control 11.0.6300
Symantec Network Access Control 11.0.7100
Symantec Network Access Control 11.0.6100
Symantec Network Access Control 11.0.6200
Symantec Network Access Control 11.0.7000
1 EDB exploit
7
CVSSv3
CVE-2016-9093
A version of the SymEvent Driver that shipped with Symantec Endpoint Protection 12.1 RU6 MP6 and previous versions fails to properly sanitize logged-in user input. SEP 14.0 and later are not impacted by this issue. A non-admin user would need to be able to save an executable file...
Symantec Endpoint Protection
Symantec Endpoint Protection 12.1.6
7.8
CVSSv3
CVE-2016-9094
Symantec Endpoint Protection clients place detected malware in quarantine as part of the intended product functionality. The quarantine logs can be exported for review by the user in a variety of formats including .CSV files. before 14.0 MP1 and 12.1 RU6 MP7, the potential exists...
Symantec Endpoint Protection 12.1.6
Symantec Endpoint Protection
7.8
CVSSv3
CVE-2019-18372
Symantec Endpoint Protection, before 14.2 RU2, may be susceptible to a privilege escalation vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated access to resources that are normally protected from an appl...
Symantec Endpoint Protection 14.2
Symantec Endpoint Protection
5.5
CVSSv3
CVE-2017-13680
Prior to SEP 12.1 RU6 MP9 & SEP 14 RU1 Symantec Endpoint Protection Windows endpoint can encounter a situation whereby an attacker could use the product's UI to perform unauthorized file deletes on the resident file system.
Symantec Endpoint Protection
Symantec Endpoint Protection 14
6.7
CVSSv3
CVE-2019-12758
Symantec Endpoint Protection, before 14.2 RU2, may be susceptible to an unsigned code execution vulnerability, which may allow an individual to execute code without a resident proper digital signature.
Symantec Endpoint Protection 14.2
Symantec Endpoint Protection
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »