Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
endpoint protection vulnerabilities and exploits
(subscribe to this query)
8
CVSSv3
CVE-2016-3653
Multiple cross-site request forgery (CSRF) vulnerabilities in management scripts in Symantec Endpoint Protection Manager (SEPM) 12.1 before RU6 MP5 allow remote authenticated users to hijack the authentication of arbitrary users.
Symantec Endpoint Protection Manager
1 EDB exploit
8
CVSSv3
CVE-2015-8152
Cross-site request forgery (CSRF) vulnerability in Symantec Endpoint Protection Manager (SEPM) 12.1 before RU6-MP4 allows remote authenticated users to hijack the authentication of administrators for requests that execute arbitrary code by adding lines to a logging script.
Symantec Endpoint Protection Manager
1 Article
7.8
CVSSv3
CVE-2024-21315
Microsoft Defender for Endpoint Protection Elevation of Privilege Vulnerability
7.8
CVSSv3
CVE-2023-47172
Certain WithSecure products allow Local Privilege Escalation. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, and WithSecure Elements Endpoint Protection 17 and later.
Withsecure Elements Endpoint Protection
Withsecure Email And Server Security
Withsecure Server Security
Withsecure Client Security
7.8
CVSSv3
CVE-2023-43766
Certain WithSecure products allow Local privilege escalation via the lhz archive unpack handler. This affects WithSecure Client Security 15, WithSecure Server Security 15, WithSecure Email and Server Security 15, WithSecure Elements Endpoint Protection 17 and later, WithSecure Cl...
F-secure Linux Protection 12.0
F-secure Linux Security 64 12.0
F-secure Atlant 1.0.35-1
F-secure Client Security 15.00
F-secure Elements Endpoint Protection
F-secure Email And Server Security 15.00
F-secure Server Security 15.00
7.8
CVSSv3
CVE-2022-25631
Symantec Endpoint Protection, before 14.3 RU6 (14.3.9210.6000), may be susceptible to a Elevation of Privilege vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated
Broadcom Symantec Endpoint Protection
7.8
CVSSv3
CVE-2022-47577
An issue exists in the endpoint protection agent in Zoho ManageEngine Device Control Plus 10.1.2228.15. Despite configuring complete restrictions on USB pendrives, USB HDD devices, memory cards, USB connections to mobile devices, etc., it is still possible to bypass the USB restr...
Zohocorp Manageengine Device Control Plus 10.1.2228.15
7.8
CVSSv3
CVE-2022-47578
An issue exists in the endpoint protection agent in Zoho ManageEngine Device Control Plus 10.1.2228.15. Despite configuring complete restrictions on USB pendrives, USB HDD devices, memory cards, USB connections to mobile devices, etc., it is still possible to bypass the USB restr...
Zohocorp Manageengine Device Control Plus 10.1.2228.15
7.8
CVSSv3
CVE-2021-24092
Microsoft Defender Elevation of Privilege Vulnerability
Microsoft Windows Defender -
Microsoft Security Essentials -
Microsoft Endpoint Protection -
Microsoft System Center Endpoint Protection -
Microsoft System Center Endpoint Protection 2012
1 Github repository
7.8
CVSSv3
CVE-2021-1647
Microsoft Defender Remote Code Execution Vulnerability
Microsoft Windows Defender -
Microsoft Security Essentials -
Microsoft System Center Endpoint Protection -
Microsoft System Center Endpoint Protection 2012
2 Articles
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »