Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
symantec vulnerabilities and exploits
(subscribe to this query)
3.5
CVSSv2
CVE-2016-6588
A Cross-Site Scripting (XSS) vulnerability exists in the ITMS workflow process manager console in Symantec IT Management Suite 8.0.
Symantec It Management Suite 8.0
4
CVSSv2
CVE-2016-6589
A Denial of Service vulnerability exists in the ITMS workflow process manager login window in Symantec IT Management Suite 8.0.
Symantec It Management Suite 8.0
4.4
CVSSv2
CVE-2016-6593
A code-execution vulnerability exists during startup in jhi.dll and otpiha.dll in Symantec VIP Access Desktop prior to 2.2.2, which could let local malicious users execute arbitrary code.
Symantec Vip Access Desktop
4.4
CVSSv2
CVE-2016-6590
A privilege escalation vulnerability exists when loading DLLs during boot up and reboot in Symantec IT Management Suite 8.0 before 8.0 HF4 and Suite 7.6 before 7.6 HF7, Symantec Ghost Solution Suite 3.1 before 3.1 MP4, Symantec Endpoint Virtualization 7.x before 7.6 HF7, and Syma...
Symantec Encryption Desktop
Symantec Endpoint Encryption
Symantec Endpoint Encryption 7.6
Symantec Ghost Solution Suite 3.1
Symantec It Management Suite 7.6
Symantec It Management Suite 8.0
3.3
CVSSv2
CVE-2016-6591
A security bypass vulnerability exists in Symantec Norton App Lock 1.0.3.186 and previous versions if application pinning is enabled, which could let a local malicious user bypass security restrictions.
Symantec Norton App Lock
6.5
CVSSv2
CVE-2019-18377
Symantec Messaging Gateway, before 10.7.3, may be susceptible to a privilege escalation vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated access to resources that are normally protected from an applicat...
Symantec Messaging Gateway
3.5
CVSSv2
CVE-2019-18378
Symantec Messaging Gateway, before 10.7.3, may be susceptible to a cross-site scripting (XSS) exploit, which is a type of issue that can enable malicious users to inject client-side scripts into web pages viewed by other users. A cross-site scripting vulnerability may be used by ...
Symantec Messaging Gateway
7.5
CVSSv2
CVE-2019-18379
Symantec Messaging Gateway, before 10.7.3, may be susceptible to a server-side request forgery (SSRF) exploit, which is a type of issue that can let an attacker send crafted requests from the backend server of a vulnerable web application or access services available through the ...
Symantec Messaging Gateway
3.3
CVSSv2
CVE-2019-18380
Symantec Industrial Control System Protection (ICSP), versions 6.x.x, may be susceptible to an unauthorized access issue that could potentially allow a threat actor to create or modify application user accounts without proper authentication.
Symantec Industrial Control System Protection
7.5
CVSSv2
CVE-2019-18374
Symantec Critical System Protection (CSP), versions 8.0, 8.0 HF1 & 8.0 MP1, may be susceptible to an authentication bypass vulnerability, which is a type of issue that can potentially allow a threat actor to circumvent existing authentication controls.
Broadcom Symantec Critical System Protection 8.0.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »