Lucene search
K
SymantecMost viewed

6867 matches found

Symantec
Symantec
•added 2019/08/13 12:0 a.m.•93 views

Microsoft SharePoint CVE-2019-1202 Information Disclosure Vulnerability

Description Microsoft SharePoint is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in further attacks. Technologies Affected Microsoft SharePoint Enterprise Server 2016 Microsoft SharePoint Foundation 2010 SP2...

3.6CVSS0.6AI score0.01589EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/07/23 12:0 a.m.•93 views

XStream API CVE-2019-10173 Deserialization Remote Code Execution Vulnerability

Description XStream API is prone to a remote code-execution vulnerability. Successfully exploiting this issue may allow an attacker to execute arbitrary commands in the context of the affected application. Xstream API versions 1.4.10 is vulnerable. Technologies Affected IBM QRadar 7.3.0 IBM QRada...

7.5CVSS1.1AI score0.94774EPSS
Exploits4References2Affected Software6
Symantec
Symantec
•added 2019/06/20 12:0 a.m.•93 views

Apache Tomcat CVE-2019-10072 Incomplete Fix Denial of Service Vulnerability

Description Apache Tomcat is prone to a denial-of-service vulnerability. Attackers may leverage this issue to cause denial-of-service conditions. The following products are affected: Apache Tomcat 9.0.0.M1 through 9.0.19 Apache Tomcat 8.5.0 through 8.5.40 Technologies Affected Apache Tomcat 8.5.0...

5CVSS0.3AI score0.72988EPSS
Exploits0References1Affected Software2
Symantec
Symantec
•added 2017/06/13 12:0 a.m.•93 views

Microsoft Windows RPC CVE-2017-8461 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. Successful exploits will allow an attacker to execute arbitrary code on the target system. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft Windows Server 2003 Microsoft Windows...

6.9CVSS0.9AI score0.21108EPSS
Exploits4Affected Software1
Symantec
Symantec
•added 2014/10/14 12:0 a.m.•93 views

Microsoft Windows Kernel 'Win32k.sys' CVE-2014-4113 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code with elevated privileges and gain access to kernel memory. Technologies Affected Microsoft Exchange Server 2003 SP2 Microsoft Windows 7 for 32-bi...

7.2CVSS2AI score0.87042EPSS
Exploits22Affected Software6
Symantec
Symantec
•added 2008/02/12 12:0 a.m.•93 views

Microsoft Internet Information Services ASP Remote Code Execution Vulnerability

Description Microsoft Internet Information Services IIS is prone to a remote code-execution vulnerability that can be exploited through malicious input to vulnerable ASP pages. A successful exploit of this vulnerability could let remote attackers execute arbitrary code in the context of the Worke...

1AI score
Exploits0References1Affected Software1
Symantec
Symantec
•added 2006/07/11 12:0 a.m.•93 views

Microsoft IIS ASP Remote Code Execution Vulnerability

Description Microsoft Internet Information Server IIS is prone to a remote code-execution vulnerability because it fails to properly bounds-check user-supplied input before copying it to an insufficiently sized memory buffer. To exploit this issue, attackers must be able to place and execute...

0.4AI score
Exploits0References4Affected Software3
Symantec
Symantec
•added 2019/10/15 12:0 a.m.•92 views

Oracle Database Server CVE-2019-2956 Remote Security Vulnerability

Description Oracle Database Server is prone to a remote security vulnerability. The vulnerability can be exploited over the multiple protocols. For an exploit to succeed, the attacker must have 'Create Session' privilege. This vulnerability affects the following supported versions: 12.1.0.2,...

1.6AI score0.01117EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•92 views

Microsoft Windows Error Reporting Manager CVE-2019-1315 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to gain the elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for x64-based Systems Microsoft...

1.7AI score0.03478EPSS
Exploits2Affected Software3
Symantec
Symantec
•added 2019/05/14 12:0 a.m.•92 views

Microsoft Dynamics On-Premise CVE-2019-1008 Security Bypass Vulnerability

Description Microsoft Dynamics is prone to a security-bypass vulnerability. An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions. Technologies Affected Microsoft Dynamics 365 on-premises 8.2 Microsoft Dynamics 365 on-premises 9 Microsoft...

0.9AI score0.02762EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2017/12/13 12:0 a.m.•92 views

Linux Kernel CVE-2017-17558 Local Denial of Service Vulnerability

Description Linux Kernel is prone to a local denial-of-service vulnerability. An attacker can exploit this issue to cause a denial-of-service condition. Due to the nature of this issue, privilege-escalation may be possible but this has not been confirmed. Linux kernel versions 4.14.5 and prior ar...

7.2CVSS0.7AI score0.0048EPSS
Exploits0References3Affected Software10
Symantec
Symantec
•added 2017/11/14 12:0 a.m.•92 views

Microsoft ASP.NET Core CVE-2017-11770 Denial of Service Vulnerability

Description Microsoft ASP.NET Core is prone to a remote denial of service vulnerability. An attacker can exploit this issue to cause a denial of service condition. ASP.NET Core 1.0, 1.1 and 2.0 are vulnerable. Technologies Affected Microsoft ASP.NET Core 1.0 Microsoft ASP.NET Core 1.1 Microsoft...

5CVSS1.3AI score0.05423EPSS
Exploits0
Symantec
Symantec
•added 2017/04/11 12:0 a.m.•92 views

Microsoft Windows CVE-2017-0165 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to gain elevated privileges. Technologies Affected Microsoft Windows 10 for 32-bit Systems Microsoft Windows 10 for x64-based Systems Microsoft Windows 10 version 1511 for...

7.2CVSS3.3AI score0.03338EPSS
Exploits2Affected Software3
Symantec
Symantec
•added 2015/12/08 12:0 a.m.•92 views

Microsoft Office CVE-2015-6172 Remote Code Execution Vulnerability

Description Microsoft Office is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial-of-service conditions. Technologies Affected Microsoft...

9.3CVSS1AI score0.53661EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2014/02/11 12:0 a.m.•92 views

Microsoft .NET Framework CVE-2014-0257 Remote Privilege Escalation Vulnerability

Description Microsoft .NET Framework is prone to a remote privilege-escalation vulnerability. An attacker can exploit this issue to elevate privileges, which may lead to a complete compromise of the affected system. Technologies Affected Avaya Aura Conferencing 6.0 SP1 Standard Avaya Aura...

9.3CVSS0.1AI score0.69801EPSS
Exploits6Affected Software10
Symantec
Symantec
•added 2019/11/19 12:0 a.m.•91 views

Fortinet FortiOS CVE-2019-6693 Hardcoded Cryptographic Key Vulnerability

Description Fortinet FortiOS is prone to a hardcoded cryptographic key vulnerability. Successful exploits will allow attackers to obtain sensitive information that may aid in further attacks. Versions prior to Fortinet FortiOS 5.6.11, 6.0.7 and 6.2.1 are vulnerable. Technologies Affected Fortinet...

6.5AI score0.05663EPSS
Exploits1References1Affected Software1
Symantec
Symantec
•added 2019/10/17 12:0 a.m.•91 views

Apache Thrift CVE-2019-0210 Remote Security Vulnerability

Description Apache Thrift is prone to a remote security vulnerability. An attacker can leverage this issue to bypass security restrictions and perform unauthorized actions. This may aid in further attacks. Apache Thrift versions 0.9.3 through 0.12.0 are vulnerable. Technologies Affected Apache...

1.4AI score0.06793EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•91 views

Microsoft Internet Explorer and Edge CVE-2019-0608 Spoofing Vulnerability

Description Microsoft Internet Explorer and Edge are prone to a security vulnerability that may allow attackers to conduct spoofing attacks. An attacker can exploit this issue to conduct spoofing attacks and perform unauthorized actions; other attacks are also possible. Technologies Affected...

7AI score0.02134EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/06/11 12:0 a.m.•91 views

Microsoft Office SharePoint CVE-2019-1032 Cross Site Scripting Vulnerability

Description Microsoft Office SharePoint is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This...

6AI score0.01662EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2018/07/24 12:0 a.m.•91 views

Google Chrome Prior to 68.0.3440.75 Multiple Security Vulnerabilities

Description Google Chrome is prone to multiple security vulnerabilities. Attackers can exploit these issues to execute arbitrary code in the context of the browser, obtain sensitive information, bypass security restrictions and perform unauthorized actions, or cause denial-of-service conditions...

1.4AI score
Exploits0References1Affected Software2
Symantec
Symantec
•added 2017/04/11 12:0 a.m.•91 views

Microsoft Outlook CVE-2017-0106 Remote Code Execution Vulnerability

Description Microsoft Outlook is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of an affected system. Failed exploit attempts may result in a denial of service condition; this can result in the attacker gaining complete...

9.3CVSS1.1AI score0.28355EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2016/03/08 12:0 a.m.•92 views

Microsoft Windows CVE-2016-0101 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. Successful exploits allow attackers to execute arbitrary code in the context of the vulnerable application. Failed exploit attempts will result in a denial of service condition. Technologies Affected Microsoft Window...

9.3CVSS0.2AI score0.20145EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2016/03/07 8:0 a.m.•91 views

SA117 : OpenSSL Vulnerabilities 1-Mar-2016

SUMMARY Blue Coat products using affected versions of OpenSSL are susceptible to multiple vulnerabilities. A remote attacker can exploit these vulnerabilities to decrypt live and recorded SSL sessions, cause denial of service through application crashes, and possibly execute arbitrary code. A...

10CVSS3.3AI score0.82112EPSS
Exploits2Affected Software26
Symantec
Symantec
•added 2015/12/08 8:0 a.m.•91 views

SA104 : OpenSSH Vulnerabilities

SUMMARY Blue Coat products using affected versions of OpenSSH are susceptible to multiple vulnerabilities. An attacker, with access to the management interface, may exploit these vulnerabilities to conduct brute-force password guessing attacks, bypass access restrictions, log in as a different...

8.5CVSS3.1AI score0.09302EPSS
Exploits8Affected Software15
Symantec
Symantec
•added 2019/06/24 12:0 a.m.•90 views

curl CVE-2019-5443 Local Code Injection Vulnerability

Description curl is prone to a vulnerability that lets attackers inject and execute arbitrary code. Successfully exploiting this issue may allow attackers to inject and execute arbitrary code. This may lead to other attacks. curl for windows versions prior to 7.65.12 are vulnerable. Technologies...

4.6CVSS0.9AI score0.00717EPSS
Exploits0References2Affected Software3
Symantec
Symantec
•added 2019/06/11 12:0 a.m.•90 views

Microsoft Windows Hyper-V CVE-2019-0709 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of an affected system. Technologies Affected Microsoft Hyper-V Microsoft Windows 10 Version 1607 for x64-based Systems Microsoft Windows 10...

1.5AI score0.0404EPSS
Exploits2Affected Software2
Symantec
Symantec
•added 2017/05/09 8:0 a.m.•90 views

SA148: Linux Kernel Vulnerabilities Feb-Apr 2017

SUMMARY Symantec Network Protection products that include a vulnerable version of the Linux kernel are susceptible to multiple vulnerabilities. A remote attacker, with access to the management interface, can exploit these vulnerabilities to execute arbitrary code. The attacker can also cause deni...

10CVSS3.7AI score0.2389EPSS
Exploits9Affected Software14
Symantec
Symantec
•added 2017/04/17 12:0 a.m.•90 views

Apache Log4j CVE-2017-5645 Remote Code Execution Vulnerability

Description Apache Log4j is prone to remote code-execution vulnerability. Successfully exploiting this issue allows attackers to execute arbitrary code in the context of the affected application. Failed exploits will result in denial-of-service conditions. Apache Log4j 2.0-alpha1 through 2.8.1 ar...

7.5CVSS0.6AI score0.8904EPSS
Exploits2References5Affected Software84
Symantec
Symantec
•added 2015/08/11 12:0 a.m.•90 views

Microsoft Office CVE-2015-2470 Integer Underflow Remote Code Execution Vulnerability

Description Microsoft Office is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial-of-service conditions. Technologies Affected Microsoft...

9.3CVSS1.1AI score0.26857EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2019/12/05 12:0 a.m.•89 views

Symantec Norton Password Manager CVE-2019-18381 Cross-Origin Security Bypass Vulnerability

Description Symantec Norton Password Manager is prone to a security bypass vulnerability. An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions; this may aid in launching further attacks. Versions prior to Symantec Norton Password Manager...

0.9AI score0.0034EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•89 views

Microsoft Windows CVE-2019-1341 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to gain the elevated privileges on the affected system. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for x64-bas...

1.6AI score0.01021EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/10/07 12:0 a.m.•89 views

WebKit Multiple Cross Site Scripting and Memory Corruption Vulnerabilities

Description WebKit is prone to multiple cross-site scripting and memory-corruption vulnerabilities. Attackers can exploit these issues to execute arbitrary code on the affected system. Failed exploit attempts may result in a denial-of-service condition. Technologies Affected Apple iCloud 6.0 Appl...

0.1AI score
Exploits0References2Affected Software3
Symantec
Symantec
•added 2017/10/10 12:0 a.m.•89 views

Microsoft Windows Search CVE-2017-11771 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. Successful exploits will allow an attacker to execute arbitrary code on the target system. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit...

10CVSS0.9AI score0.64132EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2020/01/10 12:0 a.m.•88 views

Oracle January 2020 Critical Patch Update Multiple Vulnerabilities

Description Oracle has released advance notification regarding the January 2020 Critical Patch Update CPU to be released on January 14, 2020. The update addresses 333 vulnerabilities affecting the following software: Oracle Database Server, versions 12.2.0.1, 18c, 19c Oracle Communications Design...

1.2AI score
Exploits0References1Affected Software88
Symantec
Symantec
•added 2019/12/10 12:0 a.m.•88 views

Microsoft Windows Remote Desktop Protocol CVE-2019-1489 Information Disclosure Vulnerability

Description Microsoft Windows Remote Desktop Protocol is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in launching further attacks. Technologies Affected Microsoft Windows XP SP3 Recommendations Block external acce...

0.8AI score0.07736EPSS
Exploits0
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•88 views

Microsoft Windows CVE-2019-1342 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to gain the elevated privileges on the affected system. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for x64-bas...

1.6AI score0.01098EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/11/26 12:0 a.m.•87 views

FreeIPA CVE-2019-14867 Denial of Service Vulnerability

Description FreeIPA is prone to a denial-of-service vulnerability. Attackers can exploit this issue to execute arbitrary code or crash the affected application, denying service to legitimate users. FreeIPA versions 4.6 prior to 4.6.7, versions 4.7 prior to 4.7.4 and versions 4.8 prior to 4.8.3 ar...

1.2AI score0.06329EPSS
Exploits0References5Affected Software2
Symantec
Symantec
•added 2019/11/12 12:0 a.m.•87 views

Microsoft Windows Certificate Dialog CVE-2019-1388 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to gain elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for x64-based Systems Microsoft Window...

1.7AI score0.08589EPSS
Exploits7Affected Software3
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•87 views

Microsoft Azure App Service CVE-2019-1372 Remote Code Execution Vulnerability

Description Microsoft Azure App Service is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the affected application. Failed attacks will cause denial-of-service conditions. Technologies Affected Microsoft Azure App Servi...

0.9AI score0.17833EPSS
Exploits0
Symantec
Symantec
•added 2019/07/09 12:0 a.m.•87 views

Microsoft Excel CVE-2019-1111 Remote Code Execution Vulnerability

Description Microsoft Excel is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected Microsoft...

0.7AI score0.1316EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2017/10/10 12:0 a.m.•87 views

Microsoft Jet Database Engine CVE-2017-8717 Buffer Overflow Vulnerability

Description Microsoft Jet Database Engine is prone to a buffer-overflow vulnerability because it fails to adequately bounds-check user-supplied data before copying it to an insufficiently sized memory buffer. An attacker can exploit this issue to execute arbitrary code in the context of an affect...

9.3CVSS1AI score0.23961EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2017/03/14 12:0 a.m.•87 views

Microsoft Windows Hyper-V CVE-2017-0051 Remote Denial of Service Vulnerability

Description Microsoft Windows is prone to a remote denial of service vulnerability. An attacker can exploit this issue to crash the host machine, resulting in a denial of service condition. Technologies Affected Microsoft Windows 10 Version 1607 for x64-based Systems Microsoft Windows Server 2016...

2.9CVSS0.1AI score0.031EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2014/11/11 12:0 a.m.•87 views

Microsoft Windows TCP/IP CVE-2014-4076 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code with elevated privileges. Technologies Affected Microsoft Windows Server 2003 SP2 Microsoft Windows Server 2003 x64 Edition Service Pack 2...

7.2CVSS2.6AI score0.22666EPSS
Exploits12References1Affected Software1
Symantec
Symantec
•added 2020/05/11 2:39 p.m.•86 views

Symantec Endpoint Protection Security Update

Summary Symantec, A Division of Broadcom has released updates to address issues that were discovered in the Symantec Endpoint Protection SEP and Symantec Endpoint Protection Manager SEPM products. Affected Products Symantec Endpoint Protection Manager SEPM --- CVE | Affected Versions | Remediatio...

5CVSS0.8AI score0.0165EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2019/12/11 12:0 a.m.•86 views

Symantec Messaging Gateway CVE-2019-18377 Privilege Escalation Vulnerability

Description Symantec Messaging Gateway is prone to a privilege-escalation vulnerability. An attacker can exploit this issue to gain elevated privileges on an affected system. Symantec Messaging Gateway versions prior to 10.7.3 are vulnerable. Technologies Affected Symantec Messaging Gateway 10.0...

0.8AI score0.01402EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2019/10/01 12:0 a.m.•86 views

Ruby Multiple Security Vulnerabilities

Description Ruby is prone to the following security vulnerabilities: 1. An authorization-bypass vulnerability 2. A denial-of-service vulnerability 3. An HTTP response-splitting vulnerability 4. A command-injection vulnerability An attacker can exploit these issues to bypass certain security...

7.6AI score0.05128EPSS
Exploits1References8Affected Software2
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•86 views

Microsoft Windows Remote Desktop Protocol Server CVE-2019-1225 Information Disclosure Vulnerability

Description Microsoft Windows is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in launching further attacks. Technologies Affected Microsoft Windows 10 Version 1803 for 32-bit Systems Microsoft Windows 10 Version 18...

1.1AI score0.09503EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•86 views

Microsoft Windows Remote Desktop Protocol Server CVE-2019-1224 Information Disclosure Vulnerability

Description Microsoft Windows is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in launching further attacks. Technologies Affected Microsoft Windows 10 Version 1803 for 32-bit Systems Microsoft Windows 10 Version 18...

8.3AI score0.07603EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2019/02/12 12:0 a.m.•86 views

Microsoft SharePoint Server CVE-2019-0668 Remote Privilege Escalation Vulnerability

Description Microsoft SharePoint Server is prone to a remote privilege-escalation vulnerability. An attacker may exploit this issue to gain elevated privileges. Successful exploits may aid in further attacks. Technologies Affected Microsoft SharePoint Enterprise Server 2013 Service Pack 1 Microso...

0.4AI score0.03861EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2016/12/13 12:0 a.m.•86 views

Microsoft Auto Updater for Mac CVE-2016-7300 Local Privilege Escalation Vulnerability

Description Microsoft Auto Updater for Mac is prone to a local privilege-escalation vulnerability. A local attacker can leverage this issue to execute arbitrary code with elevated privileges. Technologies Affected Microsoft Auto Updater for Mac Recommendations Permit local access for trusted...

4.6CVSS3.6AI score0.02232EPSS
Exploits0
Total number of security vulnerabilities5000