Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
symantec endpoint protection manager vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2015-1486
The management console in Symantec Endpoint Protection Manager (SEPM) 12.1 prior to 12.1-RU6-MP1 allows remote malicious users to bypass authentication via a crafted password-reset action that triggers a new administrative session.
Symantec Endpoint Protection Manager 12.1.0
1 EDB exploit
4
CVSSv2
CVE-2015-1488
An unspecified action handler in the management console in Symantec Endpoint Protection Manager (SEPM) 12.1 prior to 12.1-RU6-MP1 allows remote authenticated users to read arbitrary files via unknown vectors.
Symantec Endpoint Protection Manager 12.1.0
8.5
CVSSv2
CVE-2015-1489
The management console in Symantec Endpoint Protection Manager (SEPM) 12.1 prior to 12.1-RU6-MP1 allows remote authenticated users to gain privileges via unspecified vectors.
Symantec Endpoint Protection Manager 12.1.0
1 EDB exploit
5.5
CVSSv2
CVE-2015-1490
Directory traversal vulnerability in the management console in Symantec Endpoint Protection Manager (SEPM) 12.1 prior to 12.1-RU6-MP1 allows remote authenticated users to read arbitrary files via a relative pathname in a client installation package.
Symantec Endpoint Protection Manager 12.1.0
6
CVSSv2
CVE-2015-1491
SQL injection vulnerability in the management console in Symantec Endpoint Protection Manager (SEPM) 12.1 prior to 12.1-RU6-MP1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
Symantec Endpoint Protection Manager 12.1.0
8.5
CVSSv2
CVE-2015-1492
Untrusted search path vulnerability in the client in Symantec Endpoint Protection 12.1 prior to 12.1-RU6-MP1 allows local users to gain privileges via a Trojan horse DLL in a client install package.
Symantec Endpoint Protection Manager 12.1.0
4.9
CVSSv2
CVE-2014-9228
sysplant.sys in the Manager component in Symantec Endpoint Protection (SEP) prior to 12.1.6 allows local users to cause a denial of service (blocked system shutdown) by triggering an unspecified deadlock condition.
Symantec Endpoint Protection
4.4
CVSSv2
CVE-2014-9227
Multiple untrusted search path vulnerabilities in the Manager component in Symantec Endpoint Protection (SEP) prior to 12.1.6 allow local users to gain privileges via a Trojan horse DLL in an unspecified directory.
Symantec Endpoint Protection
6.5
CVSSv2
CVE-2014-9229
Multiple SQL injection vulnerabilities in interface PHP scripts in the Manager component in Symantec Endpoint Protection (SEP) prior to 12.1.6 allow remote authenticated users to execute arbitrary SQL commands by leveraging the Limited Administrator role.
Symantec Endpoint Protection
5
CVSSv2
CVE-2009-1432
Symantec Reporting Server, as used in Symantec AntiVirus (SAV) Corporate Edition 10.1 prior to 10.1 MR8 and 10.2 prior to 10.2 MR2, Symantec Client Security (SCS) prior to 3.1 MR8, and the Symantec Endpoint Protection Manager (SEPM) component in Symantec Endpoint Protection (SEP)...
Symantec Antivirus 10.1
Symantec Client Security 3.1
Symantec Endpoint Protection 11.0
Symantec Antivirus 10.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
CVE-2024-20360
CVE-2021-47559
XXE
CVE-2024-5229
CVE-2021-47543
CVE-2021-47571
SSTI
CVE-2024-4978
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »