Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
endpoint protection vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2018-12238
Norton before 22.15; Symantec Endpoint Protection (SEP) before 12.1.7454.7000 & 14.2; Symantec Endpoint Protection Small Business Edition (SEP SBE) prior to NIS-22.15.1.8 & SEP-12.1.7454.7000; and Symantec Endpoint Protection Cloud (SEP Cloud) before 22.15.1 may be suscep...
Symantec Endpoint Protection Cloud
Symantec Endpoint Protection
Symantec Norton Antivirus
7.8
CVSSv3
CVE-2018-12245
Symantec Endpoint Protection before 14.2 MP1 may be susceptible to a DLL Preloading vulnerability, which in this case is an issue that can occur when an application being installed unintentionally loads a DLL provided by a potential attacker. Note that this particular type of exp...
Symantec Endpoint Protection
7.8
CVSSv3
CVE-2018-6689
Authentication Bypass vulnerability in McAfee Data Loss Prevention Endpoint (DLPe) 10.0.x earlier than 10.0.510, and 11.0.x earlier than 11.0.600 allows malicious users to bypass local security protection via specific conditions.
Mcafee Data Loss Prevention Endpoint
7.8
CVSSv3
CVE-2016-9094
Symantec Endpoint Protection clients place detected malware in quarantine as part of the intended product functionality. The quarantine logs can be exported for review by the user in a variety of formats including .CSV files. before 14.0 MP1 and 12.1 RU6 MP7, the potential exists...
Symantec Endpoint Protection 12.1.6
Symantec Endpoint Protection
7.8
CVSSv3
CVE-2018-9233
Sophos Endpoint Protection 10.7 uses an unsalted SHA-1 hash for password storage in %PROGRAMDATA%\Sophos\Sophos Anti-Virus\Config\machine.xml, which makes it easier for malicious users to determine a cleartext password, and subsequently choose unsafe malware settings, via rainbow...
Sophos Endpoint Protection 10.7
1 EDB exploit
7.8
CVSSv3
CVE-2017-13681
Symantec Endpoint Protection prior to SEP 12.1 RU6 MP9 could be susceptible to a privilege escalation vulnerability, which is a type of issue that allows a user to gain elevated access to resources that are normally protected at lower access levels. In the circumstances of this i...
Symantec Endpoint Protection
7.8
CVSSv3
CVE-2017-8558
The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on 32-bit versions of Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703 doe...
Microsoft Windows Defender -
Microsoft Security Essentials -
Microsoft Forefront Endpoint Protection -
Microsoft Forefront Endpoint Protection 2010
Microsoft Windows Intune Endpoint Protection -
Microsoft Endpoint Protection -
1 EDB exploit
7.8
CVSSv3
CVE-2016-8010
Application protections bypass vulnerability in Intel Security McAfee Application Control (MAC) 7.0 and previous versions and Endpoint Security (ENS) 10.2 and previous versions allows local users to bypass local security protection via a command-line utility.
Mcafee Application Control
Mcafee Endpoint Security
7.8
CVSSv3
CVE-2016-2211
The AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x up to and including 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) prior to 12.1 RU6 MP5; Symantec Endpoint Protection (SEP) for Mac;...
Symantec Mail Security For Microsoft Exchange 6.5.8
Symantec Mail Security For Microsoft Exchange
Symantec Norton Power Eraser
Symantec Protection Engine 7.8.0
Symantec Protection Engine
Symantec Endpoint Protection 12.1.6
Symantec Message Gateway
Symantec Norton 360
Symantec Norton Antivirus
Symantec Norton Security
Symantec Norton Internet Security
Symantec Norton Security With Backup
Symantec Ngc
Symantec Message Gateway For Service Providers 10.5
Symantec Message Gateway For Service Providers 10.6
Symantec Norton Bootable Removal Tool
Symantec Mail Security For Domino
Symantec Data Center Security Server 6.0
Symantec Data Center Security Server 6.5
Symantec Data Center Security Server 6.6
Symantec Norton Security
Symantec Advanced Threat Protection
7.7
CVSSv3
CVE-2016-3647
Symantec Endpoint Protection Manager (SEPM) 12.1 before RU6 MP5 allows remote authenticated users to conduct server-side request forgery (SSRF) attacks, and trigger network traffic to arbitrary intranet hosts, via a crafted request.
Symantec Endpoint Protection Manager
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27842
CVE-2024-30657
CVE-2024-4534
hardcoded
SSRF
CVE-2024-21683
CVE-2024-5364
file upload
CVE-2024-5371
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »