Lucene search
K
SymantecMost viewed

6867 matches found

Symantec
Symantec
•added 2019/09/10 12:0 a.m.•51 views

Microsoft Windows LNK CVE-2019-1280 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. Successful exploits will allow an attacker to execute arbitrary code on the target system. Failed attacks may cause denial of service conditions. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit...

0.5AI score0.18982EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/07/16 12:0 a.m.•51 views

Oracle Communications Billing and Revenue Management CVE-2019-12086 Remote Security Vulnerability

Description Oracle Communications Billing and Revenue Management is prone to a remote security vulnerability. The vulnerability can be exploited over the 'HTTP' protocol. The 'Billing Care' and 'Business Operations Center jackson-databind' components are affected. This vulnerability affects the...

5CVSS1.9AI score0.21949EPSS
Exploits2References1Affected Software4
Symantec
Symantec
•added 2019/07/09 12:0 a.m.•51 views

Microsoft Excel CVE-2019-1112 Information Disclosure Vulnerability

Description Microsoft Excel is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in further attacks. Technologies Affected Microsoft Office 2019 for 32-bit editions Microsoft Office 2019 for 64-bit editions Microsoft...

0.08743EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2019/07/09 12:0 a.m.•51 views

Microsoft Windows WLAN Service CVE-2019-1085 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to execute arbitrary code with elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for x64-based...

1.8AI score0.00856EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/06/06 12:0 a.m.•51 views

OnApp CVE-2019-12491 Command Execution Vulnerability

Description OnApp is prone to a remote command-execution vulnerability. Successfully exploiting this issue may allow an attacker to execute arbitrary commands with root privileges in the context of the affected server. OnApp versions 5.0 prior to 5.0.0-88, 5.1 through 5.4, 5.5 prior to 5.5.0-93,...

8.5CVSS2AI score0.01533EPSS
Exploits0References2Affected Software1
Symantec
Symantec
•added 2019/05/14 12:0 a.m.•51 views

Microsoft Windows JET Database Engine CVE-2019-0898 Remote Code Execution Vulnerability

Description Microsoft Windows JET Database Engine is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of an affected system. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10...

0.7AI score0.1371EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/03/12 12:0 a.m.•51 views

Microsoft Windows Win32k CVE-2019-0776 Local Information Disclosure Vulnerability

Description Microsoft Windows is prone to a local information-disclosure vulnerability. Local attackers can exploit this issue to obtain sensitive information that may lead to further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version...

1.2AI score0.01616EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/02/12 12:0 a.m.•51 views

Microsoft Edge Chakra Scripting Engine CVE-2019-0590 Remote Memory Corruption Vulnerability

Description Microsoft Edge is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft ChakraCore Microsoft...

0.6AI score0.11107EPSS
Exploits0References1
Symantec
Symantec
•added 2018/12/11 12:0 a.m.•51 views

Microsoft Excel CVE-2018-8627 Information Disclosure Vulnerability

Description Microsoft Excel is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in further attacks. Technologies Affected Microsoft Excel 2010 SP2 32-bit editions Microsoft Excel 2010 SP2 64-bit editions Microsoft Exce...

0.1AI score0.08662EPSS
Exploits0Affected Software5
Symantec
Symantec
•added 2018/09/11 12:0 a.m.•51 views

Microsoft Windows Image File Loading CVE-2018-8475 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the affected application. Failed exploit attempts will likely cause a denial-of-service condition. Technologies Affected Microsoft Windows ...

0.8AI score0.14646EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2018/09/11 12:0 a.m.•51 views

Microsoft Jet Database Engine CVE-2018-8392 Buffer Overflow Vulnerability

Description Microsoft Jet Database Engine is prone to a buffer-overflow vulnerability because it fails to adequately bounds-check user-supplied data before copying it to an insufficiently sized memory buffer. An attacker can exploit this issue to execute arbitrary code in the context of an affect...

0.9AI score0.22757EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2018/04/10 8:0 a.m.•51 views

SA162: Multiple ASG and ProxySG Vulnerabilities

SUMMARY The Symantec ASG and ProxySG management consoles are susceptible to several vulnerabilities. A remote attacker, with access to the management console, can cause denial of service through management console application crashes. A malicious appliance administrator can also inject arbitrary...

6CVSS1.4AI score0.0523EPSS
Exploits2Affected Software2
Symantec
Symantec
•added 2018/02/13 12:0 a.m.•51 views

Microsoft Windows StructuredQuery CVE-2018-0825 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of the current user. Failed exploit attempts may result in a denial of service condition. Technologies Affected Microsoft Windows 10 Version...

7.8AI score0.16778EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2017/12/12 12:0 a.m.•51 views

Microsoft Windows CVE-2017-11927 Information Disclosure Vulnerability

Description Microsoft Windows is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in launching further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 16...

4.3CVSS7.2AI score0.09617EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2017/11/14 12:0 a.m.•51 views

Microsoft Word CVE-2017-11854 Memory Corruption Vulnerability

Description Microsoft Word is prone to a memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial-of-service conditions. Technologies Affected Microsoft Excel 2007 SP3 Microsoft...

9.3CVSS0.6AI score0.08356EPSS
Exploits0Affected Software4
Symantec
Symantec
•added 2017/11/14 12:0 a.m.•51 views

Microsoft Office CVE-2017-11884 Memory Corruption Vulnerability

Description Microsoft Office is prone to a memory-corruption vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected Microsoft Exc...

9.3CVSS1AI score0.09494EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2017/10/10 12:0 a.m.•51 views

Microsoft Windows CVE-2017-11783 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code with elevated privileges in the context of the affected system. Successful exploit would allow an attacker to take control over an affected syste...

6.9CVSS3.8AI score0.02501EPSS
Exploits4Affected Software3
Symantec
Symantec
•added 2017/09/12 12:0 a.m.•51 views

Microsoft Internet Explorer and Edge CVE-2017-8736 Information Disclosure Vulnerability

Description Microsoft Internet Explorer and Edge are prone to an information-disclosure vulnerability. Successful exploits will allow attackers to obtain sensitive information that may aid in further attacks. Technologies Affected Microsoft Edge Microsoft Internet Explorer 11 Recommendations Run...

4.3CVSS5.5AI score0.08439EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2017/08/08 12:0 a.m.•51 views

Microsoft Windows PDF CVE-2017-0293 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected Microsof...

7.6CVSS1.6AI score0.14416EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2017/05/09 12:0 a.m.•51 views

Microsoft .NET Framework CVE-2017-0248 Security Bypass Vulnerability

Description Microsoft .NET Framework is prone to a security-bypass vulnerability. An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions. This may aid in further attacks. Technologies Affected Microsoft .NET Framework 2.0 SP2 Microsoft .NET...

5CVSS0.6AI score0.0551EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2017/04/11 12:0 a.m.•51 views

Microsoft Windows ADFS CVE-2017-0159 Security Bypass Vulnerability

Description Microsoft Windows is prone to a security-bypass vulnerability. An attacker can leverage this issue to bypass certain security restrictions and perform unauthorized actions. Technologies Affected Microsoft Windows 10 Version 1607 for x64-based Systems Microsoft Windows 10 version 1703...

4.3CVSS1.5AI score0.03648EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2017/04/11 12:0 a.m.•51 views

Microsoft Windows Hyper-V CVE-2017-0183 Remote Denial of Service Vulnerability

Description Microsoft Windows is prone to a remote denial of service vulnerability. An attacker can exploit this issue to crash the host machine, resulting in a denial of service condition. Technologies Affected Microsoft Windows 10 Version 1607 for x64-based Systems Microsoft Windows 10 for...

6.3CVSS0.7AI score0.04412EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2017/03/14 12:0 a.m.•51 views

Microsoft Windows Hyper-V CVE-2017-0075 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. Successful exploits allow attackers to execute arbitrary code in the context of the vulnerable application. Failed exploit attempts will result in a denial of service condition. Technologies Affected Microsoft Window...

7.4CVSS1.7AI score0.1267EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2017/03/14 12:0 a.m.•51 views

Microsoft Windows Kernel 'Win32k.sys' CVE-2017-0079 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability that occurs in the Windows kernel. A local attacker can exploit this issue to execute arbitrary code in kernel mode with elevated privileges. Technologies Affected Microsoft Windows 10 for 32-bit Systems Microsof...

7.2CVSS4.1AI score0.02388EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2016/04/12 12:0 a.m.•51 views

Microsoft Windows Kernel 'Win32k.sys' CVE-2016-0167 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability that occurs in the Windows kernel. A local attacker can exploit this issue to execute arbitrary code in kernel mode with elevated privileges. Technologies Affected Microsoft Windows 10 for 32-bit Systems Microsof...

7.2CVSS3.7AI score0.05729EPSS
Exploits0Affected Software5
Symantec
Symantec
•added 2016/02/09 12:0 a.m.•51 views

Microsoft SharePoint CVE-2016-0039 Cross Site Scripting Vulnerability

Description Microsoft SharePoint is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may...

4.3CVSS6.9AI score0.06933EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2016/02/09 12:0 a.m.•51 views

Microsoft Windows Kernel CVE-2016-0040 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code in kernel mode with elevated privileges. Technologies Affected Microsoft Windows 7 for 32-bit Systems SP1 Microsoft Windows 7 for x64-based Syste...

7.2CVSS2.4AI score0.24554EPSS
Exploits10Affected Software4
Symantec
Symantec
•added 2015/09/08 12:0 a.m.•51 views

Microsoft Internet Explorer and Edge CVE-2015-2485 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer and Edge are prone to a remote memory-corruption vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted webpage. Attackers can exploit this issue to execute arbitrary code in the context of the currently...

9.3CVSS0.8AI score0.16505EPSS
Exploits0Affected Software6
Symantec
Symantec
•added 2015/08/11 12:0 a.m.•51 views

Microsoft Windows Mount Manager CVE-2015-1769 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to gain elevated privileges within the context of the affected system. Technologies Affected Microsoft Windows 10 for 32-bit Systems Microsoft Windows 10 for x64-based...

7.2CVSS1.3AI score0.04339EPSS
Exploits1Affected Software3
Symantec
Symantec
•added 2015/07/14 12:0 a.m.•51 views

Microsoft SQL Server CVE-2015-1761 Privilege Escalation Vulnerability

Description Microsoft SQL Server is prone to a privilege-escalation vulnerability. An attacker can exploit this issue to gain elevated privileges. Technologies Affected Avaya Meeting Exchange - Client Registration Server 5.0 Avaya Meeting Exchange - Client Registration Server 5.0.1 Avaya Meeting...

6.5CVSS0.2AI score0.185EPSS
Exploits0Affected Software6
Symantec
Symantec
•added 2014/12/09 12:0 a.m.•51 views

Microsoft Internet Explorer CVE-2014-6366 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted webpage. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in...

9.3CVSS0.3AI score0.23474EPSS
Exploits0Affected Software10
Symantec
Symantec
•added 2014/12/09 12:0 a.m.•51 views

Microsoft Internet Explorer CVE-2014-6327 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted webpage. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in...

9.3CVSS0.3AI score0.13118EPSS
Exploits1Affected Software10
Symantec
Symantec
•added 2014/10/14 12:0 a.m.•51 views

Microsoft Windows CVE-2014-4114 OLE Package Manager Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the affected application. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user...

9.3CVSS0.3AI score0.81628EPSS
Exploits22References1Affected Software5
Symantec
Symantec
•added 2014/06/25 8:0 a.m.•51 views

Symantec Data Insight Management Console HTML Injection and Cross-Site Scripting

SUMMARY The management console for Symantec Data Insight does not sufficiently validate/sanitize arbitrary input in two separate fields within the management GUI. This could potentially allow unauthorized command execution or potential malicious redirection. AFFECTED PRODUCTS Product | Version |...

6.8CVSS0.6AI score0.01991EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2014/01/09 8:0 a.m.•51 views

Symantec Endpoint Protection Privilege Assumption, Policy Bypass, Local Elevation of Privilege

SUMMARY The Management Console in Symantec Endpoint Protection does not properly validate user authentication, which could potentially allow a user to assume another users identity and privileges on the console. Symantec Endpoint Protection clients do not sufficiently restrict custom policies,...

7.4CVSS0.9AI score0.00784EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2013/06/18 12:0 a.m.•51 views

Oracle Java SE CVE-2013-2470 Memory Corruption Vulnerability

Description Oracle Java SE is prone to a memory-corruption vulnerability in Java Runtime Environment. Attackers can exploit this issue to execute arbitrary code within the context of the user running the affected application. Failed exploit attempts will likely cause denial-of-service conditions...

10CVSS1.3AI score0.22988EPSS
Exploits4References3Affected Software90
Symantec
Symantec
•added 2013/02/12 12:0 a.m.•51 views

Adobe Acrobat And Reader CVE-2013-0641 Remote Code Execution Vulnerability

Description Adobe Acrobat and Reader are prone to an unspecified remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code within the context of the affected application or to crash the application. Little information is available for this issue. We will...

9.3CVSS8.2AI score0.32449EPSS
Exploits0References3Affected Software8
Symantec
Symantec
•added 2012/11/13 12:0 a.m.•51 views

Microsoft .NET Framework CVE-2012-2519 DLL Loading Arbitrary Code Execution Vulnerability

Description Microsoft .NET Framework is prone to a vulnerability that lets attackers execute arbitrary code. An attacker can exploit this issue by enticing a legitimate user to use the vulnerable application to open a file from a network share location which contains a specially crafted Dynamic...

7.9CVSS0.6AI score0.03217EPSS
Exploits1References3Affected Software9
Symantec
Symantec
•added 2011/04/12 12:0 a.m.•51 views

Microsoft GDI+ EMF Image Processing Integer Overflow Memory Corruption Vulnerability

Description Microsoft GDI+ is prone to a remote memory-corruption vulnerability that occurs when an application that uses the library tries to process a specially crafted Enhanced Metafile EMF image file. An attacker can exploit this issue to execute arbitrary code with the privileges of the...

9.3CVSS7.1AI score0.28157EPSS
Exploits4References1Affected Software12
Symantec
Symantec
•added 2010/11/09 12:0 a.m.•51 views

Microsoft PowerPoint (CVE-2010-2573) Heap Corruption Vulnerability

Description Microsoft PowerPoint is prone to a remote heap-corruption vulnerability. An attacker can exploit this issue to execute arbitrary code with user-level privileges, facilitating the complete compromise of an affected computer. Failed exploit attempts will result in a denial-of-service...

9.3CVSS7.8AI score0.20673EPSS
Exploits1Affected Software2
Symantec
Symantec
•added 2010/07/15 12:0 a.m.•51 views

Microsoft Windows Shortcut 'LNK/PIF' Files Automatic File Execution Vulnerability

Description Microsoft Windows is prone to a vulnerability that may allow a file to automatically run because the software fails to properly handle 'LNK' files or 'PIF' files. An attacker may exploit this issue to execute arbitrary code. The attacker must entice a victim to view a specially crafte...

7.4AI score
Exploits0References5Affected Software14
Symantec
Symantec
•added 2008/09/09 12:0 a.m.•51 views

Microsoft GDI+ WMF Image File Buffer Overflow Vulnerability

Description Microsoft GDI+ is prone to a buffer-overflow vulnerability because the vector graphics linked library improperly allocates memory when parsing WMF image files. Successfully exploiting this issue would allow an attacker to corrupt memory and execute arbitrary code in the context of the...

0.6AI score
Exploits0References2Affected Software33
Symantec
Symantec
•added 2020/01/14 12:0 a.m.•50 views

Microsoft Windows Search Indexer CVE-2020-0631 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code with elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for...

1.4AI score0.00756EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/11/25 12:0 a.m.•50 views

Symantec Critical System Protection CVE-2019-18374 Unspecified Authentication Bypass Vulnerability

Description Symantec Critical System Protection is prone to an unspecified authentication-bypass vulnerability. An attacker can exploit this issue to bypass the authentication mechanism and perform unauthorized actions. This may lead to further attacks. Symantec Critical System Protection CSP...

1.9AI score0.01672EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2019/11/20 12:0 a.m.•50 views

Linux Kernel CVE-2019-14898 Incomplete Fix Local Race Condition Vulnerability

Description The Linux Kernel is prone to a local race-condition vulnerability. An attacker can exploit this issue to obtain sensitive information and cause a denial-of-service condition. This may lead to other attacks. Technologies Affected Linux kernel 2.6.38 Linux kernel 2.6.38.2 Linux kernel...

1.3AI score0.00436EPSS
Exploits4References1Affected Software1
Symantec
Symantec
•added 2019/11/06 12:0 a.m.•50 views

Cisco Small Business RV Series Routers CVE-2019-15957 Remote Command Injection Vulnerability

Description Cisco Small Business RV Series Routers are prone to a remote command injection vulnerability. Successfully exploiting this issue may allow an attacker to execute arbitrary commands with root privileges in the context of the affected device. This issue is being tracked by Cisco Bug IDs...

1.7AI score0.03246EPSS
Exploits0References1Affected Software6
Symantec
Symantec
•added 2019/10/16 12:0 a.m.•50 views

Cisco Expressway Series and Telepresence VCS CVE-2019-12705 Cross Site Scripting Vulnerability

Description Cisco Expressway Series and Telepresence Video Communication Server VCS is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting us...

0.8AI score0.00801EPSS
Exploits0References1
Symantec
Symantec
•added 2019/10/15 12:0 a.m.•50 views

Oracle Java SE/Java SE Embedded CVE-2019-2973 Remote Security Vulnerability

Description Oracle Java SE and Java SE Embedded are prone to a remote security vulnerability. The vulnerability can be exploited over Multiple protocols. This issue affects the 'JAXP' component. This vulnerability affects the following supported versions: Java SE: 7u231, 8u221, 11.0.4, 13; Java S...

6.2AI score0.03732EPSS
Exploits0References1Affected Software2
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•50 views

Microsoft Windows JET Database Engine CVE-2019-1358 Remote Code Execution Vulnerability

Description Microsoft Windows JET Database Engine is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of an affected system. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10...

0.7AI score0.76451EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/10/02 12:0 a.m.•50 views

Multiple Cisco Unified Communications Products Cross Site Request Forgery Vulnerability

Description Multiple Cisco Unified Communications Products are prone to a cross-site request-forgery vulnerability because the application does not properly validate HTTP requests. Exploiting this issue may allow a remote attacker to perform certain unauthorized actions in the context of the...

1AI score
Exploits0References1Affected Software3
Total number of security vulnerabilities5000