Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
symantec management console vulnerabilities and exploits
(subscribe to this query)
8
CVSSv3
CVE-2017-6323
The Symantec Management Console prior to ITMS 8.1 RU1, ITMS 8.0_POST_HF6, and ITMS 7.6_POST_HF7 has an issue whereby XML input containing a reference to an external entity is processed by a weakly configured XML parser. This attack may lead to the disclosure of confidential data,...
Symantec Management Console 7.6
Symantec Management Console
Symantec Management Console 8.0
6.8
CVSSv3
CVE-2017-15527
Prior to ITMS 8.1 RU4, the Symantec Management Console can be susceptible to a directory traversal exploit, which is a type of attack that can occur when there is insufficient security validation / sanitization of user-supplied input file names, such that characters representing ...
Symantec Management Console
9.1
CVSSv3
CVE-2015-8151
Symantec Encryption Management Server (SEMS) 3.3.2 before MP12 allows remote authenticated users to execute arbitrary OS commands by leveraging console administrator access.
Symantec Encryption Management Server
5.4
CVSSv3
CVE-2016-6588
A Cross-Site Scripting (XSS) vulnerability exists in the ITMS workflow process manager console in Symantec IT Management Suite 8.0.
Symantec It Management Suite 8.0
NA
CVE-2009-3033
Buffer overflow in the RunCmd method in the Altiris eXpress NS Console Utilities ActiveX control in AeXNSConsoleUtilities.dll in the web console in Symantec Altiris Deployment Solution 6.9.x, Altiris Notification Server 6.0.x, and Management Platform 7.0.x allows remote malicious...
Symantec Altiris Deployment Solution 6.9
Symantec Altiris Deployment Solution 6.9.355
Symantec Altiris Management Platform 7.0
Symantec Altiris Notification Server 6.0
Symantec Altiris Deployment Solution 6.9.164
Symantec Altiris Deployment Solution 6.9.176
Symantec Altiris Notification Server 6.0 Sp3
1 EDB exploit
NA
CVE-2007-5796
Cross-site scripting (XSS) vulnerability in the management console in Blue Coat ProxySG prior to 4.2.6.1, and 5.x prior to 5.2.2.5, allows remote malicious users to inject arbitrary web script or HTML by modifying the URL that is used for loading Certificate Revocation Lists.
Symantec Proxysg Firmware
1 EDB exploit
NA
CVE-2009-3027
VRTSweb.exe in VRTSweb in Symantec Backup Exec Continuous Protection Server (CPS) 11d, 12.0, and 12.5; Veritas NetBackup Operations Manager (NOM) 6.0 GA up to and including 6.5.5; Veritas Backup Reporter (VBR) 6.0 GA up to and including 6.6; Veritas Storage Foundation (SF) 3.5; V...
Symantec Veritas Backup Exec 11d
Symantec Veritas Backup Exec 12.0
Symantec Veritas Storage Foundation For Sybase 5.0
Symantec Veritas Storage Foundation For Oracle Real Application Cluster 5.0
Symantec Veritas Storage Foundation For Oracle Real Application Cluster 4.1
Symantec Veritas Storage Foundation For Windows High Availability 4.3mp2
Symantec Veritas Netbackup Operations Manager 6.5.5
Symantec Veritas Netbackup Reporter 6.0 Ga
Symantec Veritas Storage Foundation For Windows High Availability 5.1
Symantec Veritas Storage Foundation For Windows High Availability 5.0rp2
Symantec Veritas Storage Foundation For Db2 4.1
Symantec Veritas Storage Foundation Manager 1.1
Symantec Veritas Storage Foundation Manager 1.1.1ux
Symantec Veritas Cluster Server 4.1
Symantec Veritas Cluster Server One 2.0.2
Symantec Veritas Application Director 1.1
Symantec Veritas Storage Foundation Cluster File System 5.0
Symantec Veritas Storage Foundation Cluster File System 4.1
Symantec Veritas Storage Foundation Cluster File System 4.0
Symantec Veritas Command Central Enterprise Reporter 5.0mp1
Symantec Veritas Command Central Enterprise Reporter 5.0mp1rp1
Symantec Veritas Netbackup Reporter 6.6
NA
CVE-2011-0553
SQL injection vulnerability in the management console in Symantec IM Manager prior to 8.4.18 allows remote malicious users to execute arbitrary SQL commands via unspecified vectors.
Symantec Im Manager 8.4.8
Symantec Im Manager 8.4.9
Symantec Im Manager 6.5
Symantec Im Manager 8.3
Symantec Im Manager 8.4.5
Symantec Im Manager 8.4.6
Symantec Im Manager 8.4.7
Symantec Im Manager 8.4.15
Symantec Im Manager 8.4.13
Symantec Im Manager
Symantec Im Manager 8.4.10
Symantec Im Manager 8.4.0
Symantec Im Manager 6.0
Symantec Im Manager 8.4.16
Symantec Im Manager 8.4.1
Symantec Im Manager 8.4.2
Symantec Im Manager 8.4.12
Symantec Im Manager 8.4.11
Symantec Im Manager 7.5
Symantec Im Manager 7.0
NA
CVE-2013-4673
The management console on the Symantec Web Gateway (SWG) appliance prior to 5.1.1 does not properly implement RADIUS authentication, which allows remote malicious users to execute arbitrary code by leveraging access to the login prompt.
Symantec Web Gateway 5.0.3.18
Symantec Web Gateway
Symantec Web Gateway 5.0
Symantec Web Gateway 5.0.1
Symantec Web Gateway 5.0.2
Symantec Web Gateway 5.0.3
Symantec Web Gateway Appliance 8450 -
Symantec Web Gateway Appliance 8490 -
NA
CVE-2011-0554
The management console in Symantec IM Manager prior to 8.4.18 allows remote malicious users to execute arbitrary code via unspecified vectors, related to a "code injection issue."
Symantec Im Manager 8.4.2
Symantec Im Manager 8.4.5
Symantec Im Manager 8.4.12
Symantec Im Manager 8.4.11
Symantec Im Manager 7.5
Symantec Im Manager 7.0
Symantec Im Manager 8.4.1
Symantec Im Manager 8.4.10
Symantec Im Manager 8.4.0
Symantec Im Manager 6.0
Symantec Im Manager 8.4.16
Symantec Im Manager 8.4.6
Symantec Im Manager 8.4.7
Symantec Im Manager 8.4.15
Symantec Im Manager 8.4.13
Symantec Im Manager
Symantec Im Manager 8.4.8
Symantec Im Manager 8.4.9
Symantec Im Manager 6.5
Symantec Im Manager 8.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4654
CVE-2023-49606
encryption
NULL pointer dereference
CVE-2024-4439
CVE-2024-4649
race condition
CVE-2024-27202
CVE-2024-34566
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »