32 matches found
EUVD-2017-15384
Malware in sbrugna...
EUVD-2013-4850
Malware in sbrugna...
EUVD-2018-17022
Malware in sbrugna...
EUVD-2022-30283
Malicious code in bioql PyPI...
CVE-2022-25623
The Symantec Management Agent is susceptible to a privilege escalation vulnerability. A low privilege local account can be elevated to the SYSTEM level through registry manipulations...
CVE-2013-5008
The agent and task-agent components in Symantec Management Platform 7.0 and 7.1 before 7.1 SP2 Mp1.1v7 rollup, as used in certain Altiris products, use the same registry-entry encryption key across different customers' installations, which makes it easier for local users to obtain sensitive...
Symantec Management Agent has an unspecified vulnerability
Symantec Management Agent is a suite of software used to manage computers in bulk. The software supports communication between Notification Server computers and computers on the network. symantec Management Agent has a security vulnerability that can be exploited by attackers to elevate a low...
CVE-2022-25623
The Symantec Management Agent is susceptible to a privilege escalation vulnerability. A low privilege local account can be elevated to the SYSTEM level through registry manipulations...
CVE-2022-25623
The Symantec Management Agent is susceptible to a privilege escalation vulnerability. A low privilege local account can be elevated to the SYSTEM level through registry manipulations...
Privilege escalation
The Symantec Management Agent is susceptible to a privilege escalation vulnerability. A low privilege local account can be elevated to the SYSTEM level through registry manipulations...
CVE-2022-25623
The Symantec Management Agent is susceptible to a privilege escalation vulnerability. A low privilege local account can be elevated to the SYSTEM level through registry manipulations...
Symantec Management Center 安全漏洞
Symantec Management Agent is a suite of software used to manage computers in bulk. The software supports communication between Notification Server computers and computers on the network. symantec Management Agent has a security vulnerability that can be exploited by attackers to elevate a low...
PT-2022-17416 · Symantec · Symantec Management Agent
Name of the Vulnerable Software and Affected Versions: Symantec Management Agent affected versions not specified Description: The Symantec Management Agent is susceptible to a privilege escalation issue. A low privilege local account can be elevated to the SYSTEM level through registry...
Information Disclosure Vulnerability in MC
SUMMARY The Symantec Management Center REST API is susceptible to an information disclosure vulnerability. A malicious authenticated user can obtain passwords for external backup and CPL policy import servers that they might not otherwise be authorized to access. AFFECTED PRODUCTS Management Cent...
CVE-2018-5240
The Inventory Plugin for Symantec Management Agent prior to 7.6 POST HF7, 8.0 POST HF6, or 8.1 RU7 may be susceptible to a privilege escalation vulnerability, which is a type of issue that allows a user to gain elevated access to resources that are normally protected at lower access levels...
CVE-2018-5240
CVE-2018-5240 concerns privilege escalation in the Inventory Plugin for Symantec Management Agent (Altiris). The vulnerability affects the Inventory Plugin prior to 7.6 POST HF7, 8.0 POST HF6, or 8.1 RU7, where a user could gain elevated access to resources normally protected at lower access leve...
Inventory Plugin for Symantec Management Agent Privilege Escalation
SUMMARY Symantec has released an update to address an issue that was discovered in the Inventory Plugin for Symantec Management Agent Altiris product. AFFECTED PRODUCTS Inventory Plugin for Symantec Management Agent Altiris --- CVE | Affected Versions | Remediation CVE-2018-5240 | Prior to 7.6 PO...
CVE-2017-6323
The Symantec Management Console prior to ITMS 8.1 RU1, ITMS 8.0POSTHF6, and ITMS 7.6POSTHF7 has an issue whereby XML input containing a reference to an external entity is processed by a weakly configured XML parser. This attack may lead to the disclosure of confidential data, denial of service,...
Server side request forgery (ssrf)
The Symantec Management Console prior to ITMS 8.1 RU1, ITMS 8.0POSTHF6, and ITMS 7.6POSTHF7 has an issue whereby XML input containing a reference to an external entity is processed by a weakly configured XML parser. This attack may lead to the disclosure of confidential data, denial of service,...
Multiple Cross-Site Scripting Vulnerabilities in Symantec Management Console
Symantec Management Console is Symantec's web-based user interface for managing Symantec Management Platform and other installed solutions. Symantec Management Console has multiple cross-site scripting vulnerabilities that stem from the program failing to properly validate user input. An attacker...