Lucene search
K
SymantecMost viewed

6867 matches found

Symantec
Symantec
•added 2014/11/11 12:0 a.m.•51 views

Adobe Flash Player and AIR CVE-2014-0588 Use After Free Remote Code Execution Vulnerability

Description Adobe Flash Player and AIR are prone to an unspecified remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the user running the affected applications. Failed exploit attempts will likely cause a denial-of-service condition...

10CVSS1.6AI score0.0605EPSS
Exploits0Affected Software10
Symantec
Symantec
•added 2014/08/12 12:0 a.m.•51 views

Microsoft Internet Explorer CVE-2014-2821 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Successfully exploiting this issue may allow attackers to execute arbitrary code in the context of the application. Failed exploit attempts will result in denial-of-service conditions. Internet Explorer ...

9.3CVSS0.4AI score0.16528EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2014/01/09 8:0 a.m.•51 views

Symantec Endpoint Protection Privilege Assumption, Policy Bypass, Local Elevation of Privilege

SUMMARY The Management Console in Symantec Endpoint Protection does not properly validate user authentication, which could potentially allow a user to assume another users identity and privileges on the console. Symantec Endpoint Protection clients do not sufficiently restrict custom policies,...

7.4CVSS0.9AI score0.00784EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2012/11/13 12:0 a.m.•51 views

Microsoft .NET Framework CVE-2012-2519 DLL Loading Arbitrary Code Execution Vulnerability

Description Microsoft .NET Framework is prone to a vulnerability that lets attackers execute arbitrary code. An attacker can exploit this issue by enticing a legitimate user to use the vulnerable application to open a file from a network share location which contains a specially crafted Dynamic...

7.9CVSS0.6AI score0.03217EPSS
Exploits1References3Affected Software9
Symantec
Symantec
•added 2012/02/15 12:0 a.m.•51 views

Adobe Flash Player CVE-2012-0754 Remote Memory Corruption Vulnerability

Description Adobe Flash Player is prone to an unspecified remote memory-corruption vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts will likely result in denial-of-service conditions...

10CVSS0.3AI score0.9203EPSS
Exploits11Affected Software8
Symantec
Symantec
•added 2011/07/12 12:0 a.m.•51 views

Microsoft Windows Kernel 'Win32k.sys' (CVE-2011-1880) Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability that occurs in the Windows kernel due to a NULL-pointer dereference error. A local attacker can exploit this issue to execute arbitrary code with kernel-level privileges. Successful exploits will result in the...

7.2CVSS0.0137EPSS
Exploits0Affected Software15
Symantec
Symantec
•added 2011/06/14 12:0 a.m.•51 views

Microsoft Hyper-V VMBus 'vmswitch.sys' Denial of Service Vulnerability

Description Microsoft Hyper-V is prone to a local denial-of-service vulnerability. Using a guest system, a local attacker can exploit this issue to force the Hyper-V server to become unresponsive, denying service to legitimate users. The denial-of-service conditions would also affect other guest...

1AI score
Exploits0References1Affected Software1
Symantec
Symantec
•added 2011/04/12 12:0 a.m.•51 views

Microsoft GDI+ EMF Image Processing Integer Overflow Memory Corruption Vulnerability

Description Microsoft GDI+ is prone to a remote memory-corruption vulnerability that occurs when an application that uses the library tries to process a specially crafted Enhanced Metafile EMF image file. An attacker can exploit this issue to execute arbitrary code with the privileges of the...

9.3CVSS7.1AI score0.28157EPSS
Exploits4References1Affected Software12
Symantec
Symantec
•added 2010/11/09 12:0 a.m.•51 views

Microsoft PowerPoint (CVE-2010-2573) Heap Corruption Vulnerability

Description Microsoft PowerPoint is prone to a remote heap-corruption vulnerability. An attacker can exploit this issue to execute arbitrary code with user-level privileges, facilitating the complete compromise of an affected computer. Failed exploit attempts will result in a denial-of-service...

9.3CVSS7.8AI score0.20673EPSS
Exploits1Affected Software2
Symantec
Symantec
•added 2010/07/15 12:0 a.m.•51 views

Microsoft Windows Shortcut 'LNK/PIF' Files Automatic File Execution Vulnerability

Description Microsoft Windows is prone to a vulnerability that may allow a file to automatically run because the software fails to properly handle 'LNK' files or 'PIF' files. An attacker may exploit this issue to execute arbitrary code. The attacker must entice a victim to view a specially crafte...

7.4AI score
Exploits0References5Affected Software14
Symantec
Symantec
•added 2020/01/14 12:0 a.m.•50 views

Microsoft Windows Search Indexer CVE-2020-0631 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code with elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for...

1.4AI score0.00756EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/12/27 12:0 a.m.•50 views

WordPress CVE-2019-20042 HTML Injection Vulnerability

Description WordPress is prone to an HTML injection vulnerability. Successful exploits will allow attacker-supplied HTML and script code to run in the context of the affected browser, potentially allowing the attacker to steal cookie-based authentication credentials or to control how the site is...

8.4AI score0.02762EPSS
Exploits1References2Affected Software1
Symantec
Symantec
•added 2019/12/17 12:0 a.m.•50 views

Microsoft SharePoint Server CVE-2019-1491 Information Disclosure Vulnerability

Description Microsoft SharePoint Server is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in further attacks. Technologies Affected Microsoft SharePoint Enterprise Server 2016 Microsoft SharePoint Foundation 2010 SP2...

6.3AI score
Exploits0Affected Software3
Symantec
Symantec
•added 2019/12/10 12:0 a.m.•50 views

Apple iOS and iPadOS CVE-2019-8857 Security Bypass Vulnerability

Description Apple iOS and iPadOS are prone to a security bypass vulnerability. Attackers can exploit this issue to bypass security restrictions and perform unauthorized actions. This issue is fixed in Apple iPadOS 13.3 and iOS 13.3. Technologies Affected Apple Ipad Mini- Apple iOS 10 Apple iOS...

4AI score0.00295EPSS
Exploits0References1Affected Software2
Symantec
Symantec
•added 2019/12/03 12:0 a.m.•50 views

Reliable Controls LicenseManager CVE-2019-18245 Local Code Execution Vulnerability

Description Reliable Controls LicenseManager is prone to a local code execution vulnerability. An attacker can exploit this issue to execute arbitrary code within the context of the application. Failed exploit attempts will likely cause a denial-of-service condition. Reliable Controls...

3.9AI score0.004EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/11/06 12:0 a.m.•50 views

Cisco Small Business RV Series Routers CVE-2019-15957 Remote Command Injection Vulnerability

Description Cisco Small Business RV Series Routers are prone to a remote command injection vulnerability. Successfully exploiting this issue may allow an attacker to execute arbitrary commands with root privileges in the context of the affected device. This issue is being tracked by Cisco Bug IDs...

1.7AI score0.03246EPSS
Exploits0References1Affected Software6
Symantec
Symantec
•added 2019/10/02 12:0 a.m.•50 views

Multiple Cisco Unified Communications Products Cross Site Request Forgery Vulnerability

Description Multiple Cisco Unified Communications Products are prone to a cross-site request-forgery vulnerability because the application does not properly validate HTTP requests. Exploiting this issue may allow a remote attacker to perform certain unauthorized actions in the context of the...

1AI score
Exploits0References1Affected Software3
Symantec
Symantec
•added 2019/09/27 12:0 a.m.•50 views

Ghidra CVE-2019-16941 Arbitrary Code Execution Vulnerability

Description Ghidra is prone to an arbitrary code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code within the context of the affected application. Ghidra versions through 9.0.4 are vulnerable. Technologies Affected NSA Ghidra 9.0 NSA Ghidra 9.0.1 NSA Ghidra 9.0...

1.7AI score0.05133EPSS
Exploits2References3Affected Software1
Symantec
Symantec
•added 2019/09/10 12:0 a.m.•50 views

Microsoft Windows Common Log File System CVE-2019-1214 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to execute arbitrary code with elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for x64-based...

1.9AI score0.01419EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/07/09 12:0 a.m.•50 views

Microsoft Windows DirectX CVE-2019-0999 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attacker may exploit this issue to gain elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for x64-based Systems Microsoft Window...

2.7AI score0.00992EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2019/07/09 12:0 a.m.•50 views

Das U-Boot CVE-2019-13103 Denial of Service Vulnerability

Description Das U-Boot is prone to a denial-of-service vulnerability. An attacker can exploit this issue to crash the affected application resulting in a denial-of-service condition. Das U-Boot versions through 2019.07-rc4 are vulnerable. Technologies Affected Siemens RUGGEDCOM RSG2488 Siemens...

3.6CVSS1.1AI score0.00401EPSS
Exploits0References4Affected Software1
Symantec
Symantec
•added 2019/06/11 12:0 a.m.•50 views

Microsoft Windows GDI Component CVE-2019-1049 Information Disclosure Vulnerability

Description Microsoft Windows is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in launching further attacks. Technologies Affected Microsoft Windows 7 for 32-bit Systems SP1 Microsoft Windows 7 for x64-based Systems...

6AI score0.04314EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2019/05/14 12:0 a.m.•50 views

Microsoft Edge Chakra Scripting Engine CVE-2019-0925 Remote Memory Corruption Vulnerability

Description Microsoft Edge is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft ChakraCore Microsoft...

0.6AI score0.09215EPSS
Exploits0
Symantec
Symantec
•added 2019/05/14 12:0 a.m.•50 views

Microsoft Internet Explorer Scripting Engine CVE-2019-0918 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft Internet...

0.2AI score0.07985EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2019/05/14 12:0 a.m.•50 views

Microsoft Internet Explorer and Edge CVE-2019-0940 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer and Edge are prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsof...

0.2AI score0.23102EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2019/04/09 12:0 a.m.•50 views

Microsoft Office CVE-2019-0801 Remote Code Execution Vulnerability

Description Microsoft Office is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected Microsoft...

0.9AI score0.18515EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2019/03/12 12:0 a.m.•50 views

Microsoft Windows DHCP Client CVE-2019-0726 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. Successfully exploiting this issue may result in the execution of arbitrary code in the context of the affected system. Failed exploit attempts will likely result in denial-of-service conditions. Technologies Affecte...

1.3AI score0.54036EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2019/03/12 12:0 a.m.•50 views

Microsoft Windows VBScript Engine CVE-2019-0772 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of the current user. Failed exploit attempts may result in a denial of service condition. Technologies Affected Microsoft Windows 10 Version...

0.9AI score0.1316EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/02/12 12:0 a.m.•50 views

Microsoft Windows GDI+ Component CVE-2019-0618 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the user running the affected applications. Failed exploit attempts will likely cause a denial-of-service condition. Successful exploitatio...

0.8AI score0.67008EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/02/12 12:0 a.m.•50 views

Microsoft Windows Human Interface Devices CVE-2019-0601 Local Information Disclosure Vulnerability

Description Microsoft Windows is prone to a local information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may lead to further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 f...

0.3AI score0.0185EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2018/10/16 12:0 a.m.•50 views

Spring Framework CVE-2018-15756 Denial-Of-Service Vulnerability

...

5CVSS2.1AI score0.09513EPSS
Exploits0Affected Software20
Symantec
Symantec
•added 2018/09/11 12:0 a.m.•50 views

Microsoft Windows XML Core Services MSXML parser CVE-2018-8420 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the affected application. Failed exploit attempts will likely cause a denial-of-service condition. Technologies Affected Microsoft Windows ...

0.8AI score0.48901EPSS
Exploits1Affected Software3
Symantec
Symantec
•added 2018/02/13 12:0 a.m.•50 views

Microsoft Windows StructuredQuery CVE-2018-0825 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of the current user. Failed exploit attempts may result in a denial of service condition. Technologies Affected Microsoft Windows 10 Version...

7.8AI score0.16778EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2017/12/12 12:0 a.m.•50 views

Microsoft Windows CVE-2017-11927 Information Disclosure Vulnerability

Description Microsoft Windows is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in launching further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 16...

4.3CVSS7.2AI score0.09617EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2017/11/30 8:0 a.m.•50 views

SA157: OpenSSL Vulnerabilities 28-Aug-2017 and 2-Nov-2017

SUMMARY Symantec Network Protection products using affected versions of OpenSSL are susceptible to several vulnerabilities. A remote attacker can send a crafted X.509 certificate to cause unspecified impact. They can exploit, under certain circumstances, a computational flaw in the Montgomery...

5CVSS1.6AI score0.17699EPSS
Exploits0Affected Software24
Symantec
Symantec
•added 2017/11/14 12:0 a.m.•50 views

Microsoft Word CVE-2017-11854 Memory Corruption Vulnerability

Description Microsoft Word is prone to a memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial-of-service conditions. Technologies Affected Microsoft Excel 2007 SP3 Microsoft...

9.3CVSS0.6AI score0.08356EPSS
Exploits0Affected Software4
Symantec
Symantec
•added 2017/11/14 12:0 a.m.•50 views

Microsoft Office CVE-2017-11884 Memory Corruption Vulnerability

Description Microsoft Office is prone to a memory-corruption vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected Microsoft Exc...

9.3CVSS1AI score0.09494EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2017/11/14 12:0 a.m.•50 views

Microsoft Windows Kernel CVE-2017-11851 Local Information Disclosure Vulnerability

Description Microsoft Windows is prone to a local information-disclosure vulnerability. Local attackers can exploit this issue to obtain sensitive information that may lead to further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version...

1.9CVSS1.3AI score0.02091EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2017/10/10 12:0 a.m.•50 views

Microsoft Windows CVE-2017-11783 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code with elevated privileges in the context of the affected system. Successful exploit would allow an attacker to take control over an affected syste...

6.9CVSS3.8AI score0.02501EPSS
Exploits4Affected Software3
Symantec
Symantec
•added 2017/09/12 12:0 a.m.•50 views

Microsoft Windows DHCP Server CVE-2017-8686 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the system account. Failed exploit attempts will likely result in denial-of-service conditions. Technologies Affected Microsoft Windows...

7.5CVSS0.1AI score0.27499EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2017/08/08 12:0 a.m.•50 views

Microsoft Windows PDF CVE-2017-0293 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected Microsof...

7.6CVSS1.6AI score0.14416EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2017/06/21 8:0 a.m.•50 views

Symantec Messaging Gateway Multiple Vulnerabilities

SUMMARY Symantec has released an update to address three issues that were discovered in the Symantec Messaging Gateway SMG. AFFECTED PRODUCTS Symantec Messaging Gateway SMG --- CVE | Affected Versions | Remediation CVE-2017-6326 CVE-2017-6324 CVE-2017-6325 | Prior to 10.6.3 | Upgrade to 10.6.3 an...

10CVSS8.8AI score0.72759EPSS
Exploits5Affected Software1
Symantec
Symantec
•added 2017/05/09 12:0 a.m.•50 views

Microsoft .NET Framework CVE-2017-0248 Security Bypass Vulnerability

Description Microsoft .NET Framework is prone to a security-bypass vulnerability. An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions. This may aid in further attacks. Technologies Affected Microsoft .NET Framework 2.0 SP2 Microsoft .NET...

5CVSS0.6AI score0.0551EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2017/05/09 12:0 a.m.•50 views

Microsoft Edge CVE-2017-0234 Remote Memory Corruption Vulnerability

Description Microsoft Edge is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted web page. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Faile...

7.6CVSS0.9AI score0.38115EPSS
Exploits1
Symantec
Symantec
•added 2017/05/09 12:0 a.m.•50 views

Microsoft SharePoint CVE-2017-0255 Cross Site Scripting Vulnerability

Description Microsoft SharePoint is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may...

3.5CVSS6AI score0.01682EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2017/04/11 12:0 a.m.•50 views

Microsoft Windows Hyper-V CVE-2017-0183 Remote Denial of Service Vulnerability

Description Microsoft Windows is prone to a remote denial of service vulnerability. An attacker can exploit this issue to crash the host machine, resulting in a denial of service condition. Technologies Affected Microsoft Windows 10 Version 1607 for x64-based Systems Microsoft Windows 10 for...

6.3CVSS0.7AI score0.04412EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2017/03/14 12:0 a.m.•50 views

Microsoft Office CVE-2017-0105 Information Disclosure Vulnerability

Description Microsoft Office is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in further attacks. Technologies Affected Microsoft Office 2010 32-bit edition SP2 Microsoft Office 2010 64-bit edition SP2 Microsoft...

4.3CVSS6.2AI score0.30411EPSS
Exploits0References1Affected Software6
Symantec
Symantec
•added 2017/03/14 12:0 a.m.•50 views

Microsoft Office CVE-2017-0019 Memory Corruption Vulnerability

Description Microsoft Office is prone to a remote memory-corruption vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected...

9.3CVSS0.8AI score0.16607EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2016/11/08 12:0 a.m.•50 views

Microsoft Windows Input Method Editor CVE-2016-7221 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to gain elevated system privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for x64-based Systems...

7.2CVSS2.8AI score0.02181EPSS
Exploits0Affected Software5
Symantec
Symantec
•added 2016/04/12 12:0 a.m.•50 views

Microsoft Windows Kernel 'Win32k.sys' CVE-2016-0167 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability that occurs in the Windows kernel. A local attacker can exploit this issue to execute arbitrary code in kernel mode with elevated privileges. Technologies Affected Microsoft Windows 10 for 32-bit Systems Microsof...

7.2CVSS3.7AI score0.05729EPSS
Exploits0Affected Software5
Total number of security vulnerabilities5000