Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
symantec management console vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2010-0115
SQL injection vulnerability in login.php in the GUI management console in Symantec Web Gateway 4.5 prior to 4.5.0.376 allows remote malicious users to execute arbitrary SQL commands via the USERNAME parameter.
Symantec Web Gateway 4.5.0.325
Symantec Web Gateway 4.5.0.326
Symantec Web Gateway 4.5.0.327
Symantec Web Gateway 4.5
NA
CVE-2009-3027
VRTSweb.exe in VRTSweb in Symantec Backup Exec Continuous Protection Server (CPS) 11d, 12.0, and 12.5; Veritas NetBackup Operations Manager (NOM) 6.0 GA up to and including 6.5.5; Veritas Backup Reporter (VBR) 6.0 GA up to and including 6.6; Veritas Storage Foundation (SF) 3.5; V...
Symantec Veritas Backup Exec 11d
Symantec Veritas Backup Exec 12.0
Symantec Veritas Storage Foundation For Sybase 5.0
Symantec Veritas Storage Foundation For Oracle Real Application Cluster 5.0
Symantec Veritas Storage Foundation For Oracle Real Application Cluster 4.1
Symantec Veritas Storage Foundation For Windows High Availability 4.3mp2
Symantec Veritas Netbackup Operations Manager 6.5.5
Symantec Veritas Netbackup Reporter 6.0 Ga
Symantec Veritas Storage Foundation For Windows High Availability 5.1
Symantec Veritas Storage Foundation For Windows High Availability 5.0rp2
Symantec Veritas Storage Foundation For Db2 4.1
Symantec Veritas Storage Foundation Manager 1.1
Symantec Veritas Storage Foundation Manager 1.1.1ux
Symantec Veritas Cluster Server 4.1
Symantec Veritas Cluster Server One 2.0.2
Symantec Veritas Application Director 1.1
Symantec Veritas Storage Foundation Cluster File System 5.0
Symantec Veritas Storage Foundation Cluster File System 4.1
Symantec Veritas Storage Foundation Cluster File System 4.0
Symantec Veritas Command Central Enterprise Reporter 5.0mp1
Symantec Veritas Command Central Enterprise Reporter 5.0mp1rp1
Symantec Veritas Netbackup Reporter 6.6
NA
CVE-2009-3033
Buffer overflow in the RunCmd method in the Altiris eXpress NS Console Utilities ActiveX control in AeXNSConsoleUtilities.dll in the web console in Symantec Altiris Deployment Solution 6.9.x, Altiris Notification Server 6.0.x, and Management Platform 7.0.x allows remote malicious...
Symantec Altiris Deployment Solution 6.9
Symantec Altiris Deployment Solution 6.9.355
Symantec Altiris Management Platform 7.0
Symantec Altiris Notification Server 6.0
Symantec Altiris Deployment Solution 6.9.164
Symantec Altiris Deployment Solution 6.9.176
Symantec Altiris Notification Server 6.0 Sp3
1 EDB exploit
NA
CVE-2009-1431
XFR.EXE in the Intel File Transfer service in the console in Symantec Alert Management System 2 (AMS2), as used in Symantec System Center (SSS); Symantec AntiVirus Server; Symantec AntiVirus Central Quarantine Server; Symantec AntiVirus (SAV) Corporate Edition 9 prior to 9.0 MR7,...
Symantec Client Security
Symantec Endpoint Protection
Symantec System Center
Symantec Antivirus Central Quarantine Server
Symantec Antivirus
Symantec Antivirus -
NA
CVE-2008-3703
The management console in the Volume Manager Scheduler Service (aka VxSchedService.exe) in Symantec Veritas Storage Foundation for Windows (SFW) 5.0, 5.0 RP1a, and 5.1 accepts NULL NTLMSSP authentication, which allows remote malicious users to execute arbitrary code via requests ...
Symantec Veritas Storage Foundation 5.0
Symantec Veritas Storage Foundation 5.1
NA
CVE-2008-0640
Symantec Ghost Solution Suite 1.1 prior to 1.1 patch 2, 2.0.0, and 2.0.1 does not authenticate connections between the console and the Ghost Management Agent, which allows remote malicious users to execute arbitrary commands via unspecified RPC requests in conjunction with ARP sp...
Symantec Ghost Solutions Suite 1.1
Symantec Ghost Solutions Suite 2.0.0
Symantec Ghost Solutions Suite 2.0.1
NA
CVE-2007-5796
Cross-site scripting (XSS) vulnerability in the management console in Blue Coat ProxySG prior to 4.2.6.1, and 5.x prior to 5.2.2.5, allows remote malicious users to inject arbitrary web script or HTML by modifying the URL that is used for loading Certificate Revocation Lists.
Symantec Proxysg Firmware
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9