Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
symantec management console vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-5015
SQL injection vulnerability in the management console in Symantec Endpoint Protection Manager (SEPM) 11.0 prior to 11.0.7405.1424 and 12.1 prior to 12.1.4023.4080, and Symantec Protection Center Small Business Edition 12.x prior to 12.1.4023.4080, allows remote authenticated user...
Symantec Endpoint Protection Manager 11.0
Symantec Protection Center 12.0
Symantec Endpoint Protection Manager 12.1.0
Symantec Endpoint Protection Manager 12.1.1
Symantec Endpoint Protection Manager 12.1.2
Symantec Endpoint Protection Manager 12.1.3
2 EDB exploits
NA
CVE-2013-5013
Multiple cross-site scripting (XSS) vulnerabilities in the management console on the Symantec Web Gateway (SWG) appliance prior to 5.2 allow remote malicious users to inject arbitrary web script or HTML via (1) vectors involving PHP scripts and (2) unspecified other vectors.
Symantec Web Gateway
NA
CVE-2013-5012
Multiple SQL injection vulnerabilities in the management console on the Symantec Web Gateway (SWG) appliance prior to 5.2 allow remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
Symantec Web Gateway
NA
CVE-2013-5009
The Management Console in Symantec Endpoint Protection (SEP) 11.x prior to 11.0.7.4 and 12.x prior to 12.1.2 RU2 and Endpoint Protection Small Business Edition 12.x prior to 12.1.2 RU2 does not properly perform authentication, which allows remote authenticated users to gain privi...
Symantec Endpoint Protection 11.0
Symantec Endpoint Protection 11.0.1
Symantec Endpoint Protection 11.0.2
Symantec Endpoint Protection 11.0.6100
Symantec Endpoint Protection 11.0.6200
Symantec Endpoint Protection 11.0.4
Symantec Endpoint Protection 11.0.7000
Symantec Endpoint Protection 11.0.7100
Symantec Endpoint Protection
Symantec Endpoint Protection 11.0.6000
Symantec Endpoint Protection 11.0.3001
Symantec Endpoint Protection 11.0.6200.754
Symantec Endpoint Protection 11.0.6300
NA
CVE-2013-4676
Multiple cross-site scripting (XSS) vulnerabilities in Symantec Backup Exec 2010 R3 prior to 2010 R3 SP3 and 2012 before SP2 allow remote malicious users to inject arbitrary web script or HTML via vectors involving a (1) custom-reports generation page, (2) Storage Devices creatio...
Symantec Backup Exec 2010 R3
Symantec Backup Exec 2012
NA
CVE-2013-4673
The management console on the Symantec Web Gateway (SWG) appliance prior to 5.1.1 does not properly implement RADIUS authentication, which allows remote malicious users to execute arbitrary code by leveraging access to the login prompt.
Symantec Web Gateway 5.0.3.18
Symantec Web Gateway
Symantec Web Gateway 5.0
Symantec Web Gateway 5.0.1
Symantec Web Gateway 5.0.2
Symantec Web Gateway 5.0.3
Symantec Web Gateway Appliance 8450 -
Symantec Web Gateway Appliance 8490 -
NA
CVE-2013-1616
The management console on the Symantec Web Gateway (SWG) appliance prior to 5.1.1 allows remote malicious users to execute arbitrary commands by injecting a command into an application script.
Symantec Web Gateway 5.0.1
Symantec Web Gateway 5.0.2
Symantec Web Gateway 5.0.3
Symantec Web Gateway 5.0.3.18
Symantec Web Gateway
Symantec Web Gateway 5.0
Symantec Web Gateway Appliance 8450 -
Symantec Web Gateway Appliance 8490 -
1 EDB exploit
NA
CVE-2013-4670
Multiple cross-site scripting (XSS) vulnerabilities in the management console on the Symantec Web Gateway (SWG) appliance prior to 5.1.1 allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Symantec Web Gateway 5.0.3.18
Symantec Web Gateway
Symantec Web Gateway 5.0
Symantec Web Gateway 5.0.1
Symantec Web Gateway 5.0.2
Symantec Web Gateway 5.0.3
Symantec Web Gateway Appliance 8450 -
Symantec Web Gateway Appliance 8490 -
NA
CVE-2013-4671
Cross-site request forgery (CSRF) vulnerability in the management console on the Symantec Web Gateway (SWG) appliance prior to 5.1.1 allows remote authenticated users to hijack the authentication of unspecified victims via unknown vectors.
Symantec Web Gateway 5.0.1
Symantec Web Gateway 5.0.2
Symantec Web Gateway 5.0.3
Symantec Web Gateway 5.0.3.18
Symantec Web Gateway
Symantec Web Gateway 5.0
Symantec Web Gateway Appliance 8450 -
Symantec Web Gateway Appliance 8490 -
NA
CVE-2013-1617
Multiple SQL injection vulnerabilities in the management console on the Symantec Web Gateway (SWG) appliance prior to 5.1.1 allow remote authenticated administrators to execute arbitrary SQL commands via unspecified vectors.
Symantec Web Gateway 5.0
Symantec Web Gateway 5.0.1
Symantec Web Gateway 5.0.2
Symantec Web Gateway 5.0.3
Symantec Web Gateway 5.0.3.18
Symantec Web Gateway
Symantec Web Gateway Appliance 8450 -
Symantec Web Gateway Appliance 8490 -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-21991
CVE-2024-32674
path traversal
CVE-2023-21987
denial of service
dos
CVE-2024-4647
CVE-2024-25519
CVE-2024-33612
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »