Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
endpoint protection vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv2
CVE-2015-8113
Untrusted search path vulnerability in the client in Symantec Endpoint Protection (SEP) 12.1 prior to 12.1-RU6-MP3 allows local users to gain privileges via a Trojan horse DLL in a client install package. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-1...
Symantec Endpoint Protection
6.8
CVSSv2
CVE-2018-12245
Symantec Endpoint Protection before 14.2 MP1 may be susceptible to a DLL Preloading vulnerability, which in this case is an issue that can occur when an application being installed unintentionally loads a DLL provided by a potential attacker. Note that this particular type of exp...
Symantec Endpoint Protection
4.4
CVSSv2
CVE-2014-9227
Multiple untrusted search path vulnerabilities in the Manager component in Symantec Endpoint Protection (SEP) prior to 12.1.6 allow local users to gain privileges via a Trojan horse DLL in an unspecified directory.
Symantec Endpoint Protection
4.6
CVSSv2
CVE-2020-5837
Symantec Endpoint Protection, before 14.3, may not respect file permissions when writing to log files that are replaced by symbolic links, which can lead to a potential elevation of privilege.
Symantec Endpoint Protection
1 Github repository
4.9
CVSSv2
CVE-2014-9228
sysplant.sys in the Manager component in Symantec Endpoint Protection (SEP) prior to 12.1.6 allows local users to cause a denial of service (blocked system shutdown) by triggering an unspecified deadlock condition.
Symantec Endpoint Protection
6.5
CVSSv2
CVE-2014-9229
Multiple SQL injection vulnerabilities in interface PHP scripts in the Manager component in Symantec Endpoint Protection (SEP) prior to 12.1.6 allow remote authenticated users to execute arbitrary SQL commands by leveraging the Limited Administrator role.
Symantec Endpoint Protection
7.2
CVSSv2
CVE-2020-1170
An elevation of privilege vulnerability exists in Windows Defender that leads arbitrary file deletion on the system.To exploit the vulnerability, an attacker would first have to log on to the system, aka 'Microsoft Windows Defender Elevation of Privilege Vulnerability'....
Microsoft Windows Defender -
Microsoft Forefront Endpoint Protection 2010 -
Microsoft Security Essentials -
Microsoft System Center Endpoint Protection 2012
1 Github repository
7.2
CVSSv2
CVE-2021-1647
Microsoft Defender Remote Code Execution Vulnerability
Microsoft Windows Defender -
Microsoft Security Essentials -
Microsoft System Center Endpoint Protection -
Microsoft System Center Endpoint Protection 2012
2 Articles
7.2
CVSSv2
CVE-2020-1163
An elevation of privilege vulnerability exists in Windows Defender that leads arbitrary file deletion on the system.To exploit the vulnerability, an attacker would first have to log on to the system, aka 'Microsoft Windows Defender Elevation of Privilege Vulnerability'....
Microsoft Windows Defender -
Microsoft Forefront Endpoint Protection 2010 -
Microsoft Security Essentials -
Microsoft System Center Endpoint Protection 2012
NA
CVE-2022-25631
Symantec Endpoint Protection, before 14.3 RU6 (14.3.9210.6000), may be susceptible to a Elevation of Privilege vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated
Broadcom Symantec Endpoint Protection
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »