symantec
573 tracked vulnerabilities.
CVE-2016-5308
MEDIUM
Symantec Client Intrusion Detection System < 15.1.2 - Denial of Service via Malformed PE File
Jul 12, 2016
CVSS 5.5
EPSS 0.03
CVE-2016-2206
MEDIUM
Symantec Workspace Streaming and Virtualization - Authenticated Arbitrary File Read via File-Download Configuration
Jul 12, 2016
CVSS 5.7
EPSS 0.00
CVE-2016-2205
MEDIUM
Symantec Workspace Streaming and Virtualization - Authenticated Path Traversal
Jul 12, 2016
CVSS 5.7
EPSS 0.00
CVE-2016-5307
MEDIUM
Symantec Endpoint Protection Manager < 12.1.6 - Authenticated Path Traversal
Jun 30, 2016
CVSS 4.3
EPSS 0.00
CVE-2016-5306
MEDIUM
Symantec Endpoint Protection Manager < 12.1.6 - Exposure of Sensitive Information via Missing HSTS Enforcement
Jun 30, 2016
CVSS 5.3
EPSS 0.00
CVE-2016-5305
MEDIUM
Symantec Endpoint Protection Manager < 12.1.6 - Authenticated Cross-Site Scripting via DOM Link Manipulation
Jun 30, 2016
CVSS 5.4
EPSS 0.00
CVE-2016-5304
MEDIUM
Symantec Endpoint Protection Manager < 12.1.6 - Authenticated Open Redirect
Jun 30, 2016
CVSS 6.8
EPSS 0.07
CVE-2016-3653
HIGH
Symantec Endpoint Protection Manager < 12.1.6 - Authenticated Cross-Site Request Forgery
Jun 30, 2016
CVSS 8.0
EPSS 0.00
CVE-2016-3652
MEDIUM
Symantec Endpoint Protection Manager <12.1 - XSS
Jun 30, 2016
CVSS 5.4
EPSS 0.01
CVE-2016-3651
HIGH
Symantec Endpoint Protection Manager <12.1 - Info Disclosure
Jun 30, 2016
CVSS 8.0
EPSS 0.01
CVE-2016-3650
HIGH
Symantec Endpoint Protection Manager <12.1 - Info Disclosure
Jun 30, 2016
CVSS 8.8
EPSS 0.00
CVE-2016-3649
MEDIUM
Symantec Endpoint Protection Manager <12.1 - Info Disclosure
Jun 30, 2016
CVSS 4.3
EPSS 0.00
CVE-2016-3648
HIGH
Symantec Endpoint Protection Manager <12.1 - Auth Bypass
Jun 30, 2016
CVSS 8.8
EPSS 0.01
CVE-2016-3647
HIGH
Symantec Endpoint Protection Manager <12.1 - SSRF
Jun 30, 2016
CVSS 7.7
EPSS 0.00
CVE-2016-3646
HIGH
Symantec ATP/SDCS:S/SEP/SEP for Mac/Linux <12.1 RU6 MP5 - RCE
Jun 30, 2016
CVSS 8.4
EPSS 0.26
CVE-2016-3645
CRITICAL
Symantec ATP/SDCS:S <6.6 MP1 - Buffer Overflow
Jun 30, 2016
CVSS 9.8
EPSS 0.76
CVE-2016-3644
HIGH
Symantec ATP/SDCS:S 6.x-6.6 MP1, Web Gateway, SEP <12.1 RU6 MP5, SE...
Jun 30, 2016
CVSS 8.4
EPSS 0.29
CVE-2016-2211
HIGH
Symantec AntiVirus Decomposer Engine - Remote Code Execution via Crafted CAB File
Jun 30, 2016
CVSS 7.8
EPSS 0.10
CVE-2016-2210
HIGH
Symantec Protection Engine Remote Code Execution via Crafted File
Jun 30, 2016
CVSS 7.3
EPSS 0.29
CVE-2016-2209
HIGH
Symantec Protection Engine Remote Code Execution via Crafted File
Jun 30, 2016
CVSS 7.3
EPSS 0.29
CVE-2016-2207
HIGH
Symantec AntiVirus Decomposer Engine - Remote Code Execution via Crafted RAR File
Jun 30, 2016
CVSS 8.4
EPSS 0.50
CVE-2016-2208
CRITICAL
Symantec Anti-Virus Engine < 20151.1.0.32 - Remote Code Execution via Malformed PE Header
May 19, 2016
CVSS 9.1
EPSS 0.53
CVE-2016-2204
HIGH
Symantec Messaging Gateway < 10.6.1 - Local Privilege Escalation via Terminal Input
Apr 22, 2016
CVSS 8.2
EPSS 0.00
CVE-2016-2203
HIGH
Symantec Messaging Gateway < 10.6.1 - Local Encrypted AD Password Exposure
Apr 22, 2016
CVSS 7.8
EPSS 0.30
CVE-2016-2202
MEDIUM
Symantec Altiris IT Management Suite < 7.6 - Application Blacklist Bypass in Inventory Solution
Apr 20, 2016
CVSS 5.5
EPSS 0.00
Products
endpoint_protection 71
norton_antivirus 67
endpoint_protection_manager 41
norton_internet_security 40
web_gateway 35
client_security 27
messaging_gateway 25
altiris_deployment_solution 24
mail_security 19
norton_system_works 19
norton_personal_firewall 18
pcanywhere 18
antivirus 15
enterprise_firewall 15
norton_360 14
norton_ghost 13
encryption_desktop 11
antivirus_scan_engine 10
endpoint_encryption 10
message_gateway 10
norton_security 10
protection_engine 10
advanced_threat_protection 9
brightmail_antispam 9
csapi 9
encryption_management_server 9
mail_security_for_domino 9
mail_security_for_microsoft_exchange 9
protection_for_sharepoint_servers 9
backupexec_system_recovery 8
Quick Filters