Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
endpoint protection vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2020-1170
An elevation of privilege vulnerability exists in Windows Defender that leads arbitrary file deletion on the system.To exploit the vulnerability, an attacker would first have to log on to the system, aka 'Microsoft Windows Defender Elevation of Privilege Vulnerability'....
Microsoft Windows Defender -
Microsoft Forefront Endpoint Protection 2010 -
Microsoft Security Essentials -
Microsoft System Center Endpoint Protection 2012
1 Github repository
7.8
CVSSv3
CVE-2020-1163
An elevation of privilege vulnerability exists in Windows Defender that leads arbitrary file deletion on the system.To exploit the vulnerability, an attacker would first have to log on to the system, aka 'Microsoft Windows Defender Elevation of Privilege Vulnerability'....
Microsoft Windows Defender -
Microsoft Forefront Endpoint Protection 2010 -
Microsoft Security Essentials -
Microsoft System Center Endpoint Protection 2012
7.8
CVSSv3
CVE-2020-5837
Symantec Endpoint Protection, before 14.3, may not respect file permissions when writing to log files that are replaced by symbolic links, which can lead to a potential elevation of privilege.
Symantec Endpoint Protection
1 Github repository
7.8
CVSSv3
CVE-2020-5836
Symantec Endpoint Protection, before 14.3, can potentially reset the ACLs on a file as a limited user while Symantec Endpoint Protection's Tamper Protection feature is disabled.
Symantec Endpoint Protection
7.8
CVSSv3
CVE-2020-7259
Exploitation of Privilege/Trust vulnerability in file in McAfee Endpoint Security (ENS) before 10.7.0 February 2020 Update allows local users to bypass local security protection via a carefully crafted input file
Mcafee Endpoint Security 10.5.0
Mcafee Endpoint Security 10.5.1
Mcafee Endpoint Security 10.5.2
Mcafee Endpoint Security 10.5.3
Mcafee Endpoint Security 10.5.4
Mcafee Endpoint Security 10.5.5
Mcafee Endpoint Security 10.6.0
7.8
CVSSv3
CVE-2020-9363
The Sophos AV parsing engine prior to 2020-01-14 allows virus-detection bypass via a crafted ZIP archive. This affects Endpoint Protection, Cloud Optix, Mobile, Intercept X Endpoint, Intercept X for Server, and Secure Web Gateway. NOTE: the vendor feels that this does not apply t...
Sophos Cloud Optix
Sophos Endpoint Protection
Sophos Intercept X Endpoint
Sophos Intercept X For Server
Sophos Mobile
Sophos Secure Web Gateway
7.8
CVSSv3
CVE-2020-5820
Symantec Endpoint Protection (SEP) and Symantec Endpoint Protection Small Business Edition (SEP SBE), before 14.2 RU2 MP1 and before 14.2.5569.2100 respectively, may be susceptible to a privilege escalation vulnerability, which is a type of issue whereby an attacker may attempt t...
Symantec Endpoint Protection 11.0
Symantec Endpoint Protection 12.1
Symantec Endpoint Protection 14.0.0
Symantec Endpoint Protection 14.0.1
Symantec Endpoint Protection 14.2
Symantec Endpoint Protection 12.0
7.8
CVSSv3
CVE-2020-5821
Symantec Endpoint Protection (SEP) and Symantec Endpoint Protection Small Business Edition (SEP SBE), before 14.2 RU2 MP1 and before 14.2.5569.2100 respectively, may be susceptible to a DLL injection vulnerability, which is a type of issue whereby an individual attempts to execut...
Symantec Endpoint Protection 11.0
Symantec Endpoint Protection 12.1
Symantec Endpoint Protection 14.0.0
Symantec Endpoint Protection 14.0.1
Symantec Endpoint Protection 14.2
Symantec Endpoint Protection 12.0
7.8
CVSSv3
CVE-2020-5822
Symantec Endpoint Protection (SEP) and Symantec Endpoint Protection Small Business Edition (SEP SBE), before 14.2 RU2 MP1 and before 14.2.5569.2100 respectively, may be susceptible to a privilege escalation vulnerability, which is a type of issue whereby an attacker may attempt t...
Symantec Endpoint Protection 11.0
Symantec Endpoint Protection 12.1
Symantec Endpoint Protection 14.0.0
Symantec Endpoint Protection 14.0.1
Symantec Endpoint Protection 14.2
Symantec Endpoint Protection 12.0
7.8
CVSSv3
CVE-2020-5823
Symantec Endpoint Protection (SEP) and Symantec Endpoint Protection Small Business Edition (SEP SBE), before 14.2 RU2 MP1 and before 14.2.5569.2100 respectively, may be susceptible to a privilege escalation vulnerability, which is a type of issue whereby an attacker may attempt t...
Symantec Endpoint Protection 11.0
Symantec Endpoint Protection 12.1
Symantec Endpoint Protection 14.0.0
Symantec Endpoint Protection 14.0.1
Symantec Endpoint Protection 14.2
Symantec Endpoint Protection 12.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2024-34413
CVE-2024-34089
CVE-2024-33408
local
SQL
CVE-2024-0402
CVE-2024-33910
CVE-2024-31848
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »