Lucene search
HistoryAug 01, 2015 - 1:59 a.m.
CVE-2015-1490
5.5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:P/A:P
6.1 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
42.6%
Directory traversal vulnerability in the management console in Symantec Endpoint Protection Manager (SEPM) 12.1 before 12.1-RU6-MP1 allows remote authenticated users to read arbitrary files via a relative pathname in a client installation package.
Affected configurations
Node
symantecendpoint_protection_managerMatch12.1.0
Related
cve
cve
CVE-2015-1490
2015-08-01 01:59:07
prion
prion
Directory traversal
2015-08-01 01:59:00
cvelist
cvelist
CVE-2015-1490
2015-08-01 01:00:00
zdt
zdt
Symantec Endpoint Protection Multiple Vulnerabilities
2015-08-01 00:00:00
openvas
openvas
Symantec Endpoint Protection Manager Multiple Vulnerabilities (Aug 2015)
2015-08-14 00:00:00
symantec
symantec
Symantec Endpoint Protection Multiple Issues
2015-07-30 08:00:00
nessus
nessus
5.5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:P/A:P
6.1 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
42.6%
Related for NVD:CVE-2015-1490