Vulnerabilities (CVE)

Vendor filter

Symantec Subscribe

Filter

511 total CVE
CVE Vendors Products Updated CVSS
CVE-2019-12755 1 Symantec 1 Norton Password Manager 2019-09-19 2.1
Norton Password Manager, prior to 6.5.0.2104, may be susceptible to an information disclosure issue, which is a type of vulnerability whereby there is an unintentional disclosure of information to an actor that is not explicitly authorized to...
CVE-2019-9697 1 Symantec 1 Management Center 2019-09-05 4.0
An information disclosure vulnerability in the Management Center (MC) REST API 2.0, 2.1, and 2.2 prior to 2.2.2.1 allows a malicious authenticated user to obtain passwords for external backup and CPL policy import servers that they might not...
CVE-2018-18371 1 Symantec 2 Advanced Secure Gateway, Proxysg 2019-09-05 4.0
The ASG/ProxySG FTP proxy WebFTP mode allows intercepting FTP connections where a user accesses an FTP server via a ftp:// URL in a web browser. An information disclosure vulnerability in the WebFTP mode allows a malicious user to obtain...
CVE-2018-18370 1 Symantec 2 Advanced Secure Gateway, Proxysg 2019-09-05 4.3
The ASG/ProxySG FTP proxy WebFTP mode allows intercepting FTP connections where a user accesses an FTP server via a ftp:// URL in a web browser. A stored cross-site scripting (XSS) vulnerability in the WebFTP mode allows a remote attacker to...
CVE-2019-12754 1 Symantec 1 Vip 2019-09-03 3.5
Symantec My VIP portal, previous version which has already been auto updated, was susceptible to a cross-site scripting (XSS) exploit, which is a type of issue that can enable attackers to inject client-side scripts into web pages viewed by other...
CVE-2016-2211 1 Symantec 18 Norton 360, Mail Security For Microsoft Exchange, Norton Security and 15 more 2019-08-14 9.3
The AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) before 12.1 RU6 MP5; Symantec Endpoint...
CVE-2016-2210 1 Symantec 18 Norton 360, Mail Security For Microsoft Exchange, Norton Security and 15 more 2019-08-14 9.0
Buffer overflow in Dec2LHA.dll in the AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) before...
CVE-2016-2209 1 Symantec 18 Norton 360, Mail Security For Microsoft Exchange, Norton Security and 15 more 2019-08-14 9.0
Buffer overflow in Dec2SS.dll in the AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) before 12.1...
CVE-2016-2207 1 Symantec 18 Norton 360, Mail Security For Microsoft Exchange, Norton Security and 15 more 2019-08-14 10.0
The AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) before 12.1 RU6 MP5; Symantec Endpoint...
CVE-2019-12750 1 Symantec 1 Endpoint Protection 2019-08-08 4.6
Symantec Endpoint Protection, prior to 14.2 RU1 & 12.1 RU6 MP10 and Symantec Endpoint Protection Small Business Edition, prior to 12.1 RU6 MP10c (12.1.7491.7002), may be susceptible to a privilege escalation vulnerability, which is a type of...
CVE-2009-1432 1 Symantec 4 Antivirus, Endpoint Protection, Antivirus Central Quarantine Server and 1 more 2019-07-26 5.0
Symantec Reporting Server, as used in Symantec AntiVirus (SAV) Corporate Edition 10.1 before 10.1 MR8 and 10.2 before 10.2 MR2, Symantec Client Security (SCS) before 3.1 MR8, and the Symantec Endpoint Protection Manager (SEPM) component in...
CVE-2019-12751 1 Symantec 1 Message Gateway 2019-07-18 7.5
Symantec Messaging Gateway, prior to 10.7.1, may be susceptible to a privilege escalation vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated access to resources that are...
CVE-2016-3646 1 Symantec 18 Norton 360, Mail Security For Microsoft Exchange, Norton Security and 15 more 2019-07-16 10.0
The AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) before 12.1 RU6 MP5; Symantec Endpoint...
CVE-2016-3645 1 Symantec 18 Norton 360, Mail Security For Microsoft Exchange, Norton Security and 15 more 2019-07-16 10.0
Integer overflow in the TNEF unpacker in the AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP)...
CVE-2016-3644 1 Symantec 18 Norton 360, Mail Security For Microsoft Exchange, Norton Security and 15 more 2019-07-16 10.0
The AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) before 12.1 RU6 MP5; Symantec Endpoint...
CVE-2019-9702 1 Symantec 1 Endpoint Encryption 2019-07-07 4.6
Symantec Endpoint Encryption, prior to SEE 11.3.0, may be susceptible to a privilege escalation vulnerability, which is a type of issue that allows a user to gain elevated access to resources that are normally protected at lower access levels.
CVE-2019-9703 1 Symantec 1 Endpoint Encryption 2019-07-07 4.6
Symantec Endpoint Encryption, prior to SEE 11.3.0, may be susceptible to a privilege escalation vulnerability, which is a type of issue that allows a user to gain elevated access to resources that are normally protected at lower access levels.
CVE-2019-9701 1 Symantec 1 Data Loss Prevention 2019-07-03 3.5
DLP 15.5 MP1 and all prior versions may be susceptible to a cross-site scripting (XSS) vulnerability, a type of issue that can enable attackers to inject client-side scripts into web pages viewed by other users. A cross-site scripting...
CVE-2018-18367 1 Symantec 1 Endpoint Protection Manager 2019-05-03 6.8
Symantec Endpoint Protection Manager (SEPM) prior to and including 12.1 RU6 MP9 and prior to 14.2 RU1 may be susceptible to a DLL Preloading vulnerability, which is a type of issue that can occur when an application looks to call a DLL for...
CVE-2018-18366 1 Symantec 1 Endpoint Protection 2019-05-03 2.1
Symantec Norton Security prior to 22.16.3, SEP (Windows client) prior to and including 12.1 RU6 MP9, and prior to 14.2 RU1, SEP SBE prior to Cloud Agent 3.00.31.2817, NIS-22.15.2.22, SEP-12.1.7484.7002 and SEP Cloud prior to 22.16.3 may be...