Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
symantec endpoint protection 12.1 vulnerabilities and exploits
(subscribe to this query)
555
VMScore
CVE-2015-1487
The management console in Symantec Endpoint Protection Manager (SEPM) 12.1 prior to 12.1-RU6-MP1 allows remote authenticated users to write to arbitrary files, and consequently obtain administrator privileges, via a crafted filename.
Symantec Endpoint Protection Manager 12.1.0
1 EDB exploit
534
VMScore
CVE-2016-3651
Symantec Endpoint Protection Manager (SEPM) 12.1 before RU6 MP5 allows remote authenticated users to discover the PHP JSESSIONID value via unspecified vectors.
Symantec Endpoint Protection Manager
534
VMScore
CVE-2015-1491
SQL injection vulnerability in the management console in Symantec Endpoint Protection Manager (SEPM) 12.1 prior to 12.1-RU6-MP1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
Symantec Endpoint Protection Manager 12.1.0
516
VMScore
CVE-2012-0294
Directory traversal vulnerability in the Manager service in the management console in Symantec Endpoint Protection (SEP) 12.1 prior to 12.1 RU1-MP1 allows remote malicious users to delete files via unspecified vectors.
Symantec Endpoint Protection 12.1
Symantec Endpoint Protection 12.1.671
Symantec Endpoint Protection 12.1.1000
495
VMScore
CVE-2016-5304
Open redirect vulnerability in a report-routing component in Symantec Endpoint Protection Manager (SEPM) 12.1 before RU6 MP5 allows remote authenticated users to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
Symantec Endpoint Protection Manager
1 EDB exploit
490
VMScore
CVE-2015-1490
Directory traversal vulnerability in the management console in Symantec Endpoint Protection Manager (SEPM) 12.1 prior to 12.1-RU6-MP1 allows remote authenticated users to read arbitrary files via a relative pathname in a client installation package.
Symantec Endpoint Protection Manager 12.1.0
445
VMScore
CVE-2016-5306
Symantec Endpoint Protection Manager (SEPM) 12.1 before RU6 MP5 does not properly implement the HSTS protection mechanism, which makes it easier for remote malicious users to obtain sensitive information by sniffing the network for unintended HTTP traffic on port 8445.
Symantec Endpoint Protection Manager
435
VMScore
CVE-2016-5309
The RAR file parser component in the AntiVirus Decomposer engine in Symantec Advanced Threat Protection: Network (ATP); Symantec Email Security.Cloud; Symantec Data Center Security: Server; Symantec Endpoint Protection (SEP) for Windows prior to 12.1.6 MP5; Symantec Endpoint Prot...
Broadcom Symantec Data Center Security Server -
Symantec Advanced Threat Protection -
Symantec Csapi
Symantec Email Security.cloud -
Symantec Endpoint Protection
Symantec Endpoint Protection Cloud -
Symantec Endpoint Protection For Small Business -
Symantec Endpoint Protection For Small Business
Symantec Mail Security For Domino
Symantec Mail Security For Domino 8.1.2
Symantec Mail Security For Domino 8.1.3
Symantec Mail Security For Microsoft Exchange
Symantec Mail Security For Microsoft Exchange 7.0
Symantec Mail Security For Microsoft Exchange 7.0.1
Symantec Mail Security For Microsoft Exchange 7.0.2
Symantec Mail Security For Microsoft Exchange 7.0.3
Symantec Mail Security For Microsoft Exchange 7.0.4
Symantec Mail Security For Microsoft Exchange 7.5
Symantec Mail Security For Microsoft Exchange 7.5.1
Symantec Mail Security For Microsoft Exchange 7.5.2
Symantec Mail Security For Microsoft Exchange 7.5.3
Symantec Mail Security For Microsoft Exchange 7.5.4
1 EDB exploit
435
VMScore
CVE-2016-5310
The RAR file parser component in the AntiVirus Decomposer engine in Symantec Advanced Threat Protection: Network (ATP); Symantec Email Security.Cloud; Symantec Data Center Security: Server; Symantec Endpoint Protection (SEP) for Windows prior to 12.1.6 MP5; Symantec Endpoint Prot...
Broadcom Symantec Data Center Security Server -
Symantec Advanced Threat Protection -
Symantec Csapi
Symantec Email Security.cloud -
Symantec Endpoint Protection
Symantec Endpoint Protection Cloud -
Symantec Endpoint Protection For Small Business -
Symantec Endpoint Protection For Small Business
Symantec Mail Security For Domino
Symantec Mail Security For Domino 8.1.2
Symantec Mail Security For Domino 8.1.3
Symantec Mail Security For Microsoft Exchange
Symantec Mail Security For Microsoft Exchange 7.0
Symantec Mail Security For Microsoft Exchange 7.0.1
Symantec Mail Security For Microsoft Exchange 7.0.2
Symantec Mail Security For Microsoft Exchange 7.0.3
Symantec Mail Security For Microsoft Exchange 7.0.4
Symantec Mail Security For Microsoft Exchange 7.5
Symantec Mail Security For Microsoft Exchange 7.5.1
Symantec Mail Security For Microsoft Exchange 7.5.2
Symantec Mail Security For Microsoft Exchange 7.5.3
Symantec Mail Security For Microsoft Exchange 7.5.4
1 EDB exploit
435
VMScore
CVE-2014-3438
Multiple cross-site scripting (XSS) vulnerabilities in console interface scripts in Symantec Endpoint Protection Manager (SEPM) 12.1 before RU5 allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Symantec Endpoint Protection Manager 12.1.1
Symantec Endpoint Protection Manager 12.1.2
Symantec Endpoint Protection Manager 12.1.3
Symantec Endpoint Protection Manager
Symantec Endpoint Protection Manager 12.1.0
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »