Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
symantec management console vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2016-10257
The Symantec Advanced Secure Gateway (ASG) 6.6, ASG 6.7 (before 6.7.2.1), ProxySG 6.5 (before 6.5.10.6), ProxySG 6.6, and ProxySG 6.7 (before 6.7.2.1) management console is susceptible to a reflected XSS vulnerability. A remote attacker can use a crafted management console URL in...
Broadcom Advanced Secure Gateway
Broadcom Advanced Secure Gateway 6.6
Broadcom Symantec Proxysg
Broadcom Symantec Proxysg 6.6
NA
CVE-2022-25628
An authenticated user can perform XML eXternal Entity injection in Management Console in Symantec Identity Manager 14.4
Broadcom Symantec Identity Governance And Administration 14.3
Broadcom Symantec Identity Governance And Administration 14.4
NA
CVE-2022-25627
An authenticated administrator who has physical access to the environment can carry out Remote Command Execution on Management Console in Symantec Identity Manager 14.4
Broadcom Symantec Identity Governance And Administration 14.3
Broadcom Symantec Identity Governance And Administration 14.4
10
CVSSv2
CVE-2008-3703
The management console in the Volume Manager Scheduler Service (aka VxSchedService.exe) in Symantec Veritas Storage Foundation for Windows (SFW) 5.0, 5.0 RP1a, and 5.1 accepts NULL NTLMSSP authentication, which allows remote malicious users to execute arbitrary code via requests ...
Symantec Veritas Storage Foundation 5.0
Symantec Veritas Storage Foundation 5.1
3.5
CVSSv2
CVE-2014-9224
Cross-site scripting (XSS) vulnerability in the ajaxswing webui in the Management Console server in the management server in Symantec Critical System Protection (SCSP) 5.2.9 through MP6 and Symantec Data Center Security: Server Advanced (SDCS:SA) 6.0.x up to and including 6.0 MP1...
Broadcom Symantec Critical System Protection 5.2.9
Symantec Data Center Security 6.0.0
1 EDB exploit
1 Article
NA
CVE-2022-25626
An unauthenticated user can access Identity Manager’s management console specific page URLs. However, the system doesn’t allow the user to carry out server side tasks without a valid web session.
Broadcom Symantec Identity Governance And Administration 14.3
Broadcom Symantec Identity Governance And Administration 14.4
7.9
CVSSv2
CVE-2013-5017
SNMPConfig.php in the management console in Symantec Web Gateway (SWG) prior to 5.2.1 allows remote malicious users to execute arbitrary commands via unspecified vectors.
Symantec Web Gateway
5.2
CVSSv2
CVE-2014-1650
SQL injection vulnerability in user.php in the management console in Symantec Web Gateway (SWG) prior to 5.2.1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
Symantec Web Gateway
6.5
CVSSv2
CVE-2013-5012
Multiple SQL injection vulnerabilities in the management console on the Symantec Web Gateway (SWG) appliance prior to 5.2 allow remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
Symantec Web Gateway
8.3
CVSSv2
CVE-2015-6547
The management console on Symantec Web Gateway (SWG) appliances with software prior to 5.2.2 DB 5.0.0.1277 allows remote authenticated users to execute arbitrary commands at boot time via unspecified vectors.
Symantec Web Gateway
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »