Vulnerabilidades em Symantec Corporation

71 resultados

CVE-2017-18268—Symantec IntelligenceCenter 3.3 is vulnerable to the Return of the Bleichenbacher Oracle Threat (ROBOT) attack. A remote attacker, who has cEPSS 1.6%CVE-2018-5238—Norton Power Eraser (prior to 5.3.0.24) and SymDiag (prior to 2.1.242) may be susceptible to a DLL Preloading vulnerability, which is a typeEPSS 1.6%CVE-2016-10256—The Symantec ProxySG 6.5 (prior to 6.5.10.6), 6.6, and 6.7 (prior to 6.7.2.1) management console is susceptible to a reflected XSS vulnerabiEPSS 1.5%CVE-2016-10257—The Symantec Advanced Secure Gateway (ASG) 6.6, ASG 6.7 (prior to 6.7.2.1), ProxySG 6.5 (prior to 6.5.10.6), ProxySG 6.6, and ProxySG 6.7 (pEPSS 1.5%CVE-2016-10259—Symantec SSL Visibility (SSLV) 3.8.4FC, 3.9, 3.10 before 3.10.4.1, and 3.11 before 3.11.3.1 is susceptible to a denial-of-service vulnerabilEPSS 1.5%CVE-2017-15532—Prior to 10.6.4, Symantec Messaging Gateway may be susceptible to a path traversal attack (also known as directory traversal). These types oEPSS 1.4%CVE-2016-9094—Symantec Endpoint Protection clients place detected malware in quarantine as part of the intended product functionality. The quarantine logsEPSS 1.3%CVE-2017-6324—The Symantec Messaging Gateway, when processing a specific email attachment, can allow a malformed or corrupted Word file with a potentiallyEPSS 1.3%CVE-2017-6330—Symantec Encryption Desktop before SED 10.4.1MP2 can allow remote attackers to cause a denial of service (resource consumption) via crafted EPSS 1.1%CVE-2018-12240—The Norton Identity Safe product prior to 5.3.0.976 may be susceptible to a privilege escalation issue via a hard coded IV, which is a type EPSS 1.1%CVE-2018-12244—SEP (Mac client) prior to and including 12.1 RU6 MP9 and prior to 14.2 RU1 may be susceptible to a CSV/DDE injection (also known as formula EPSS 1.1%CVE-2018-5240—The Inventory Plugin for Symantec Management Agent prior to 7.6 POST HF7, 8.0 POST HF6, or 8.1 RU7 may be susceptible to a privilege escalatEPSS 1.1%CVE-2017-15527—Prior to ITMS 8.1 RU4, the Symantec Management Console can be susceptible to a directory traversal exploit, which is a type of attack that cEPSS 1.1%CVE-2018-5236—Symantec Endpoint Protection prior to 14 RU1 MP1 or 12.1 RU6 MP10 may be susceptible to a race condition (or race hazard). This type of issuEPSS 1.1%CVE-2018-12245—Symantec Endpoint Protection prior to 14.2 MP1 may be susceptible to a DLL Preloading vulnerability, which in this case is an issue that canEPSS 1.1%CVE-2017-13678—Stored XSS vulnerability in the Symantec Advanced Secure Gateway (ASG) and ProxySG management consoles. A malicious appliance administrator EPSS 1.1%CVE-2018-12246—Symantec Web Isolation (WI) 1.11 prior to 1.11.21 is susceptible to a reflected cross-site scripting (XSS) vulnerability. A remote attacker EPSS 1.0%CVE-2018-12241—The Symantec Security Analytics (SA) 7.x prior to 7.3.4 Web UI is susceptible to a reflected cross-site scripting (XSS) vulnerability. A remEPSS 1.0%CVE-2019-12753—An information disclosure vulnerability in Symantec Reporter web UI 10.3 prior to 10.3.2.5 allows a malicious authenticated administrator usEPSS 1.0%CVE-2019-9697—An information disclosure vulnerability in the Management Center (MC) REST API 2.0, 2.1, and 2.2 prior to 2.2.2.1 allows a malicious authentEPSS 1.0%

← anteriorpágina 2 / 4próxima →