← back
CVE-2013-5015observed exploitation

CVE-2013-5015

65Vexday Risk Score

Patch now. It exploitation observed by VulnCheck and has a working public exploit.

ssvc Actepss 29%
from disclosure to weapon9 days
Published on NVDFeb 14
1st PoC+9d
metasploit+10d
VulnCheck+147d
exploitation probability
29%top 2% of all CVEs
observed exploitation
yesVulnCheck
4 public exploit(s)
SQL injection vulnerability in the management console in Symantec Endpoint Protection Manager (SEPM) 11.0 before 11.0.7405.1424 and 12.1 before 12.1.4023.4080, and Symantec Protection Center Small Business Edition 12.x before 12.1.4023.4080, allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
Affected products
n/a · n/a
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.