Lucene search
K
SymantecMost viewed

6867 matches found

Symantec
Symantec
•added 2019/11/18 12:0 a.m.•37 views

Linux Kernel CVE-2019-19049 Memory Leak Denial of Service Vulnerability

Description Linux Kernel is prone to a denial-of-service vulnerability. Successful exploitation of this issue will cause excessive memory consumption, resulting in a denial-of-service condition. Linux kernel versions prior to 5.3.10 are vulnerable. Technologies Affected Linux kernel 2.6.0 Linux...

7.8CVSS1.2AI score0.03551EPSS
Exploits0References3Affected Software1
Symantec
Symantec
•added 2019/11/12 12:0 a.m.•37 views

TIBCO EBX Add-on CVE-2019-17331 Cross Site Scripting Vulnerability

Description TIBCO EBX Add-on is prone to a cross-site scripting vulnerability because they fail to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may let t...

0.1AI score0.00609EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/11/12 12:0 a.m.•37 views

Microsoft Windows OpenType Fonts CVE-2019-1419 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. Successful exploits allow attackers to execute arbitrary code in the context of the vulnerable application. Failed exploit attempts will result in a denial-of-service condition. Technologies Affected Microsoft Window...

0.2AI score0.10012EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/11/12 12:0 a.m.•37 views

Microsoft Windows Win32k CVE-2019-1396 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code in kernel mode with elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version...

2AI score0.01131EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/11/12 12:0 a.m.•37 views

Microsoft Windows GDI CVE-2019-1439 Information Disclosure Vulnerability

Description Microsoft Windows is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in launching further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 16...

7.9AI score0.75859EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/11/12 12:0 a.m.•37 views

Microsoft Windows 'ATMFD.dll' CVE-2019-1412 Local Information Disclosure Vulnerability

Description Microsoft Windows is prone to a local information-disclosure vulnerability. Local attackers can exploit this issue to obtain sensitive information that may lead to further attacks. Technologies Affected Microsoft Windows 7 for 32-bit Systems SP1 Microsoft Windows 7 for x64-based Syste...

1.4AI score0.0159EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/10/28 12:0 a.m.•37 views

phpMyAdmin CVE-2019-18622 SQL Injection Vulnerability

Description phpMyAdmin is prone to an SQL-injection vulnerability because it fails to properly sanitize user-supplied input before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the...

1.4AI score0.02579EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2019/10/16 12:0 a.m.•37 views

Cisco Aironet Access Points CVE-2019-15260 Unauthorized Access Vulnerability

Description Cisco Aironet Access Points is prone to an unauthorized access vulnerability. An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions, gain elevated privileges. This may aid in launching further attacks. This issue is tracked by Cisc...

1.6AI score0.02994EPSS
Exploits0References1Affected Software2
Symantec
Symantec
•added 2019/10/16 12:0 a.m.•37 views

Cisco Aironet Access Points CVE-2019-15261 Denial of Service Vulnerability

Description Cisco Aironet Access Points is prone to a denial-of-service vulnerability. An attacker can exploit this issue to cause a denial-of-service condition. This issue is being tracked by Cisco Bug ID CSCvk79807. Technologies Affected Cisco Aironet 1810 Series Access Points Cisco Aironet 183...

1.8AI score0.01374EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/16 12:0 a.m.•37 views

Cisco Wireless LAN Controller Software CVE-2019-15266 Local Directory Traversal Vulnerability

Description Cisco Wireless LAN Controller Software is prone to a local directory-traversal vulnerability. An attacker can exploit this issue using directory-traversal characters '../' to access or read arbitrary files that contain sensitive information or to access files outside of the restricted...

1.7AI score0.0065EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/15 12:0 a.m.•37 views

Oracle E-Business Suite CVE-2019-2990 Remote Security Vulnerability

Description Oracle E-Business Suite is prone to a remote security vulnerability in Oracle iStore. The vulnerability can be exploited over the 'HTTP' protocol. The 'Order Tracker' component is affected. This vulnerability affects the following supported versions: 12.1.1 through 12.1.3 and 12.2.3...

1AI score0.01288EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/15 12:0 a.m.•37 views

Oracle PeopleSoft Enterprise HCM Human Resources CVE-2019-2951 Remote Security Vulnerability

Description Oracle PeopleSoft Enterprise HCM Human Resources is prone to a remote security vulnerability. These vulnerabilities can be exploited over the 'HTTP' protocol. These vulnerabilities affect the following supported versions: 9.2 Technologies Affected Oracle PeopleSoft Enterprise HCM Huma...

0.2AI score0.01129EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/15 12:0 a.m.•37 views

Oracle Database Server Multiple Local Security Vulnerabilities

Description Oracle Database Server is prone to multiple local security vulnerabilities. These vulnerabilities can be exploited over the multiple protocols. The 'Core RDBMS' component is affected. This vulnerability affects the following supported versions: 11.2.0.4, 12.1.0.2, 12.2.0.1, 18c and 19...

2.2AI score
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/15 12:0 a.m.•37 views

Oracle Java SE/Java SE Embedded CVE-2019-2996 Remote Security Vulnerability

Description Oracle Java SE and Java SE Embedded are prone to a remote security vulnerability. The vulnerability can be exploited over Multiple protocols. This issue affects the 'Deployment' component. This vulnerability affects the following supported versions: Java SE: 8u221; Java SE Embedded:...

6.8AI score0.02204EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/15 12:0 a.m.•37 views

Oracle Data Integrator CVE-2019-2943 Remote Security Vulnerability

Description Oracle Data Integrator is prone to a remote security vulnerability. The vulnerability can be exploited over the 'HTTP' protocol. The 'Studio' component is affected. This vulnerability affects the following supported versions: 12.2.1.3.0 Technologies Affected Oracle Data Integrator...

1.4AI score0.01494EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/09 12:0 a.m.•37 views

Juniper Junos CVE-2019-0073 Local Insecure File Permissions Vulnerability

Description Juniper Junos is prone to a local insecure file-permission vulnerability. A local attacker can exploit this issue to access sensitive information stored in the file-system. The following versions of Junos are vulnerable. Juniper Junos 15.1X49 versions prior to 15.1X49-D180 Juniper Jun...

1.8AI score0.00287EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/09 12:0 a.m.•37 views

Juniper Junos CVE-2019-0074 Local Directory Traversal Vulnerability

Description Juniper Junos is prone to a local directory-traversal vulnerability. An attacker can exploit this issue using directory-traversal characters '../' to read arbitrary files that contain sensitive information or to access files outside of the restricted directory to obtain sensitive...

2.1CVSS1.7AI score0.00355EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/09 12:0 a.m.•37 views

Juniper Junos CVE-2019-0056 Denial of Service Vulnerability

Description Juniper Junos is prone to a denial-of-service vulnerability. An attacker may exploit this issue to cause denial-of-service conditions. Technologies Affected Juniper Junos 18.1 Juniper Junos 18.1R1 Juniper Junos 18.1R2 Juniper Junos 18.1R2-S1 Juniper Junos 18.1R2-S2 Juniper Junos...

5CVSS0.5AI score0.0132EPSS
Exploits0References2Affected Software1
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•37 views

Intel Smart Connect Technology CVE-2019-11167 Local Privilege Escalation Vulnerability

Description Intel Smart Connect Technology is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to gain elevated privileges. Intel Smart Connect Technology for Intel NUC products is vulnerable. Technologies Affected Intel Smart Connect Technology...

2.1AI score0.00294EPSS
Exploits0References1
Symantec
Symantec
•added 2019/10/07 12:0 a.m.•37 views

vBulletin CVE-2019-17132 Remote Code Execution Vulnerability

Description vBulletin is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will likely cause a denial-of-service condition. vBulletin versions 5.5.4 and prior are...

6.8CVSS0.3AI score0.1178EPSS
Exploits4References3Affected Software1
Symantec
Symantec
•added 2019/10/04 12:0 a.m.•37 views

Bootstrap 3 Typeahead CVE-2019-10215 Cross Site Scripting Vulnerabilitiy

Description Bootstrap 3 Typeahead is prone to a cross-site scripting vulnerability because it fails to sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the...

6.9AI score0.01532EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/02 12:0 a.m.•37 views

Cisco Firepower Management Center CVE-2019-12689 Remote Code Execution Vulnerability

Description Cisco Firepower Management Center is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code on the affected system with root privileges. This may aid in further attacks. This issue being tracked by Cisco Bug ID CSCvh03951...

1.8AI score0.03123EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/09/10 12:0 a.m.•37 views

Microsoft Windows Remote Desktop Client CVE-2019-0787 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the affected application. Failed attacks will cause denial-of-service conditions. Technologies Affected Microsoft Windows 10 Version 1607 f...

1.3AI score0.12531EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•37 views

Zoho Applications Manager Plugin CVE-2019-15104 SQL Injection Vulnerability

Description Zoho Applications Manager Plugin is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. An attacker may leverage this issue to compromise the application, access or modify data, or exploit latent...

9CVSS1.2AI score0.07789EPSS
Exploits1References1Affected Software1
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•37 views

Microsoft Windows Graphics Component CVE-2019-1150 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. Successful exploits may allow an attacker to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft Windows 10...

9.3CVSS0.7AI score0.29051EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•37 views

Microsoft Edge Chakra Scripting Engine CVE-2019-1141 Remote Memory Corruption Vulnerability

Description Microsoft Edge is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft ChakraCore Microsoft...

7.6CVSS0.6AI score0.01883EPSS
Exploits0
Symantec
Symantec
•added 2019/08/02 12:0 a.m.•37 views

Apache Tika CVE-2019-10088 Denial of Service Vulnerability

Description Apache Tika is prone to a denial-of-service vulnerability. An attacker may exploit this issue to cause denial-of-service conditions. Apache Tika versions 1.7 through 1.21 are vulnerable. Technologies Affected Apache Tika 1.10 Apache Tika 1.11 Apache Tika 1.12 Apache Tika 1.13 Apache...

6.8CVSS0.6AI score0.0484EPSS
Exploits0References4Affected Software2
Symantec
Symantec
•added 2019/06/17 3:43 p.m.•37 views

Symantec Endpoint Encryption Privilege Escalation

SUMMARY Symantec has released an update to address issues that were discovered in the Symantec Endpoint Encryption and Symantec Encryption Desktop products. AFFECTED PRODUCTS Symantec Endpoint Encryption SEE --- CVE | Affected Versions | Remediation CVE-2019-9702 CVE-2019-9703 | Prior to SEE 11.3...

4.6CVSS0.2AI score0.00212EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2019/04/09 12:0 a.m.•37 views

Microsoft Edge Chakra Scripting Engine CVE-2019-0810 Remote Memory Corruption Vulnerability

Description Microsoft Edge is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft ChakraCore Microsoft...

0.6AI score0.11532EPSS
Exploits0References1
Symantec
Symantec
•added 2019/04/09 12:0 a.m.•37 views

Microsoft Internet Explorer VBScript Engine CVE-2019-0862 Remote Code Execution Vulnerability

Description Microsoft Internet Explorer is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts will likely result in denial-of-service conditions...

1AI score0.11107EPSS
Exploits0Affected Software4
Symantec
Symantec
•added 2019/04/09 12:0 a.m.•38 views

Microsoft Windows CVE-2019-0839 Local Information Disclosure Vulnerability

Description Microsoft Windows is prone to a local information-disclosure vulnerability. A local attacker can leverage this issue to disclose sensitive information that may aid in further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Versi...

1.1AI score0.022EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/04/09 12:0 a.m.•37 views

Microsoft Edge Chakra Scripting Engine CVE-2019-0861 Remote Memory Corruption Vulnerability

Description Microsoft Edge is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft ChakraCore Microsoft...

0.6AI score0.11107EPSS
Exploits0References1
Symantec
Symantec
•added 2019/01/08 12:0 a.m.•37 views

Microsoft Office SharePoint CVE-2019-0556 Cross Site Scripting Vulnerability

Description Microsoft Office SharePoint is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This...

6.1AI score0.01639EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2018/12/11 12:0 a.m.•37 views

Microsoft Internet Explorer Scripting Engine CVE-2018-8643 Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a memory corruption vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of the current user. Failed exploit attempts may result in a denial of service condition. Technologies Affected Microsoft Internet...

0.5AI score0.09906EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2018/12/11 12:0 a.m.•37 views

Microsoft Excel CVE-2018-8597 Remote Code Execution Vulnerability

Description Microsoft Excel is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected Microsoft...

1AI score0.1613EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2018/12/11 12:0 a.m.•37 views

Microsoft Windows Text-To-Speech CVE-2018-8634 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. Successfully exploiting this issue may result in the execution of arbitrary code in the context of the affected system. Failed exploit attempts will likely result in denial-of-service conditions. Technologies Affecte...

1.3AI score0.14507EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2018/10/23 12:0 a.m.•37 views

GitLab CVE-2018-19495 Server Side Request Forgery Security Bypass Vulnerability

Description GitLab is prone to a security bypass vulnerability. An attacker can exploit this issue to bypass security restrictions and perform unauthorized actions. This may aid in further attacks. GitLab versions prior to 11.3.11, 11.4.x prior to 11.4.8 and 11.5.x prior to 11.5.1 are vulnerable...

4CVSS0.4AI score0.00984EPSS
Exploits0References1Affected Software2
Symantec
Symantec
•added 2018/09/11 12:0 a.m.•37 views

Microsoft Excel CVE-2018-8331 Remote Code Execution Vulnerability

Description Microsoft Excel is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected Microsoft...

1AI score0.19546EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2018/09/11 12:0 a.m.•37 views

Microsoft Windows CVE-2018-8468 Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a privilege-escalation vulnerability. An attackers may exploit this issue to gain elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for x64-based Systems Microsoft Windows 10 Version 1803 for 32-bit Systems Microsoft Windows 10...

0.4AI score0.11765EPSS
Exploits1Affected Software3
Symantec
Symantec
•added 2018/08/14 12:0 a.m.•37 views

Microsoft ChakraCore Scripting Engine CVE-2018-8359 Information Disclosure Vulnerability

Description Microsoft ChakraCore Scripting Engine is prone to an information disclosure vulnerability. Successful exploits will allow attackers to obtain sensitive information that may aid in further attacks. Technologies Affected Microsoft ChakraCore Recommendations Run all software as a...

7.2AI score0.14512EPSS
Exploits0
Symantec
Symantec
•added 2018/07/10 12:0 a.m.•37 views

Microsoft Edge CVE-2018-8278 Spoofing Vulnerability

Description Microsoft Edge is prone to a security vulnerability that may allow attackers to conduct spoofing attacks. An attacker can exploit this issue to conduct spoofing attacks and perform unauthorized actions; other attacks are also possible. Technologies Affected Microsoft Edge...

0.4AI score0.06413EPSS
Exploits0
Symantec
Symantec
•added 2018/07/10 12:0 a.m.•37 views

Microsoft SharePoint Server CVE-2018-8300 Remote Code Execution Vulnerability

Description Microsoft SharePoint Server is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected Microsoft SharePoint Enterprise Server 2016...

0.9AI score0.12755EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2018/07/10 12:0 a.m.•37 views

Microsoft Internet Explorer Scripting Engine CVE-2018-8242 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Internet Explorer 9, 10 and 11 are...

0.2AI score0.17982EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2018/06/16 12:0 a.m.•37 views

Redis CVE-2018-12453 Remote Denial Of Service Vulnerability

Description Redis is prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to cause denial-of-service condition. Redis version prior to 5.0 are vulnerable. Technologies Affected Redhat Ceph Storage 3 Redhat Mobile Application Platform 4 Redis Redis 2.8.21 Redis Red...

5CVSS0.4AI score0.24182EPSS
Exploits5References3Affected Software3
Symantec
Symantec
•added 2018/06/12 12:0 a.m.•37 views

Microsoft Windows Code Integrity Module CVE-2018-1040 Denial of Service Vulnerability

Description Microsoft Windows is prone to a denial-of-service vulnerability. An attacker can exploit this issue to cause the target service to stop responding, denying service to legitimate users. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10...

1.1AI score0.06668EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2018/06/12 12:0 a.m.•37 views

Microsoft Chakra Scripting Engine CVE-2018-8229 Remote Memory Corruption Vulnerability

Description Microsoft Edge is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft ChakraCore Microsoft...

0.6AI score0.7131EPSS
Exploits2
Symantec
Symantec
•added 2018/06/12 12:0 a.m.•37 views

Microsoft Internet Explorer Scripting Engine CVE-2018-8267 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Internet Explorer 9, 10 and 11 are...

0.2AI score0.1523EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2018/05/25 8:0 a.m.•37 views

SA167: SAML Authentication Bypass

SUMMARY When configured to authenticate network users with a SAML authentication realm, Symantec ASG and ProxySG incorrectly handle SAML responses that have XML nodes with comments. A remote attacker can modify a valid SAML response without invalidating its cryptographic signature to bypass SAML...

7.5CVSS0.1AI score0.04798EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2018/05/08 12:0 a.m.•37 views

Microsoft .NET Framework Device Guard CVE-2018-1039 Local Security Bypass Vulnerability

Description Microsoft .NET Framework Device Guard is prone to a local security-bypass vulnerability. An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions. This may aid in further attacks. Technologies Affected Microsoft .NET Framework 2.0 SP2...

1.1AI score0.01245EPSS
Exploits0
Symantec
Symantec
•added 2018/05/08 12:0 a.m.•37 views

Microsoft Outlook CVE-2018-8160 Information Disclosure Vulnerability

Description Microsoft Outlook is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in further attacks. Technologies Affected Microsoft Office 2010 Service Pack 2 32-bit editions Microsoft Office 2010 Service Pack 2 64-b...

6.4AI score0.08019EPSS
Exploits0Affected Software4
Total number of security vulnerabilities5000