Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
symantec management console vulnerabilities and exploits
(subscribe to this query)
795
VMScore
CVE-2013-1612
Buffer overflow in secars.dll in the management console in Symantec Endpoint Protection Manager (SEPM) 12.1.x prior to 12.1.3, and Symantec Endpoint Protection Center (SPC) Small Business Edition 12.0.x, allows remote malicious users to execute arbitrary code via unspecified vect...
Symantec Endpoint Protection Manager 12.1.0
Symantec Endpoint Protection Manager 12.1.1
Symantec Endpoint Protection Manager 12.1.2
Symantec Endpoint Protection Center 12.0.1
Symantec Endpoint Protection Center 12.0.0
1 EDB exploit
760
VMScore
CVE-2013-5014
The management console in Symantec Endpoint Protection Manager (SEPM) 11.0 prior to 11.0.7405.1424 and 12.1 prior to 12.1.4023.4080, and Symantec Protection Center Small Business Edition 12.x prior to 12.1.4023.4080, allows remote malicious users to read arbitrary files via XML d...
Symantec Protection Center 12.0
Symantec Endpoint Protection Manager 12.1.0
Symantec Endpoint Protection Manager 11.0
Symantec Endpoint Protection Manager 12.1.3
Symantec Endpoint Protection Manager 12.1.1
Symantec Endpoint Protection Manager 12.1.2
2 EDB exploits
756
VMScore
CVE-2015-5690
The management console on Symantec Web Gateway (SWG) appliances with software prior to 5.2.2 DB 5.0.0.1277 allows remote authenticated users to bypass intended access restrictions and execute arbitrary commands by leveraging a "redirect."
Symantec Web Gateway
755
VMScore
CVE-2015-1486
The management console in Symantec Endpoint Protection Manager (SEPM) 12.1 prior to 12.1-RU6-MP1 allows remote malicious users to bypass authentication via a crafted password-reset action that triggers a new administrative session.
Symantec Endpoint Protection Manager 12.1.0
1 EDB exploit
755
VMScore
CVE-2014-3437
The management console in Symantec Endpoint Protection Manager (SEPM) 12.1 before RU5 allows remote malicious users to read arbitrary files or send TCP requests to intranet servers via XML data containing an external entity declaration in conjunction with an entity reference, rel...
Symantec Endpoint Protection Manager 12.1.1
Symantec Endpoint Protection Manager 12.1.2
Symantec Endpoint Protection Manager 12.1.0
Symantec Endpoint Protection Manager 12.1.3
Symantec Endpoint Protection Manager
1 EDB exploit
755
VMScore
CVE-2012-2961
SQL injection vulnerability in the management console in Symantec Web Gateway 5.0.x prior to 5.0.3.18 allows remote malicious users to execute arbitrary SQL commands via unspecified vectors.
Symantec Web Gateway 5.0.2
Symantec Web Gateway 5.0.3
Symantec Web Gateway 5.0.1
Symantec Web Gateway 5.0
1 EDB exploit
755
VMScore
CVE-2012-2574
SQL injection vulnerability in the management console in Symantec Web Gateway 5.0.x prior to 5.0.3.18 allows remote malicious users to execute arbitrary SQL commands via unspecified vectors, related to a "blind SQL injection" issue.
Symantec Web Gateway 5.0.2
Symantec Web Gateway 5.0.3
Symantec Web Gateway 5.0.1
Symantec Web Gateway 5.0
1 EDB exploit
739
VMScore
CVE-2015-6547
The management console on Symantec Web Gateway (SWG) appliances with software prior to 5.2.2 DB 5.0.0.1277 allows remote authenticated users to execute arbitrary commands at boot time via unspecified vectors.
Symantec Web Gateway
725
VMScore
CVE-2012-2957
The management console in Symantec Web Gateway 5.0.x prior to 5.0.3.18 allows local users to gain privileges by modifying files, related to a "file inclusion" issue.
Symantec Web Gateway 5.0
Symantec Web Gateway 5.0.2
Symantec Web Gateway 5.0.3
Symantec Web Gateway 5.0.1
1 EDB exploit
712
VMScore
CVE-2016-9097
The Symantec Advanced Secure Gateway (ASG) 6.6 before 6.6.5.8, ProxySG 6.5 prior 6.5.10.6, ProxySG 6.6 before 6.6.5.8, and ProxySG 6.7 before 6.7.1.2 management consoles do not, under certain circumstances, correctly authorize administrator users. A malicious administrator with r...
Broadcom Advanced Secure Gateway 6.6.5.1
Broadcom Advanced Secure Gateway 6.6.4
Broadcom Advanced Secure Gateway 6.6.4.3
Broadcom Advanced Secure Gateway 6.6.3
Broadcom Advanced Secure Gateway 6.6
Broadcom Symantec Proxysg 6.5.6.1
Broadcom Symantec Proxysg 6.5.2.10
Broadcom Symantec Proxysg 6.5
Broadcom Symantec Proxysg 6.5.9.8
Broadcom Symantec Proxysg 6.5.9.2
Broadcom Symantec Proxysg 6.5.2
Broadcom Symantec Proxysg 6.5.1
Broadcom Symantec Proxysg 6.5.7.6
Broadcom Symantec Proxysg 6.5.9.14
Broadcom Symantec Proxysg 6.5.5.7
Broadcom Symantec Proxysg 6.5.9.10
Broadcom Symantec Proxysg 6.5.4.1
Broadcom Symantec Proxysg 6.6
Broadcom Symantec Proxysg 6.6.2.2
Broadcom Symantec Proxysg 6.6.3
Broadcom Symantec Proxysg 6.6.4.3
Broadcom Symantec Proxysg 6.6.4
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »