Lucene search
K
SymantecMost viewed

6867 matches found

Symantec
Symantec
•added 2019/08/27 8:0 a.m.•32 views

Information Disclosure Vulnerability in MC

SUMMARY The Symantec Management Center REST API is susceptible to an information disclosure vulnerability. A malicious authenticated user can obtain passwords for external backup and CPL policy import servers that they might not otherwise be authorized to access. AFFECTED PRODUCTS Management Cent...

4CVSS0.7AI score0.00989EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•32 views

Microsoft Outlook CVE-2019-1199 Remote Code Execution Vulnerability

Description Microsoft Outlook is prone to a remote code-execution vulnerability. Successful exploits may allow an attacker to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft Office 2019...

9.3CVSS0.1AI score0.04646EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•32 views

Microsoft Windows CVE-2019-1177 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to gain elevated privileges on the system. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for x64-based Systems...

4.6CVSS1.6AI score0.00712EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/08/13 12:0 a.m.•32 views

Microsoft Windows CVE-2019-1173 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to gain the elevated privileges on the system. Technologies Affected Microsoft Windows 10 Version 1803 for 32-bit Systems Microsoft Windows 10 Version 1803 for ARM64-based...

4.6CVSS2.5AI score0.00742EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2019/07/09 12:0 a.m.•32 views

Microsoft Edge Chakra Scripting Engine CVE-2019-1062 Remote Memory Corruption Vulnerability

Description Microsoft Edge is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft ChakraCore Microsoft...

0.6AI score0.08948EPSS
Exploits0References1
Symantec
Symantec
•added 2019/05/11 12:0 a.m.•32 views

GraphicsMagick CVE-2019-19951 Heap Buffer Overflow Vulnerability

Description GraphicsMagick is prone to a heap-based buffer-overflow vulnerability because it fails to adequately bounds-check user-supplied data before copying it into an insufficiently sized buffer. Successful exploits may allow the attacker to crash the affected application. Due to the nature o...

9.7AI score0.02547EPSS
Exploits1References1Affected Software1
Symantec
Symantec
•added 2019/04/22 12:0 a.m.•32 views

Kubernetes CVE-2019-11244 Local Unauthorized Access Vulnerability

Description Kubernetes is prone to a local unauthorized-access vulnerability. A local attacker can exploit this issue to gain unauthorized access to the affected application. This may aid in further attacks. Kubernetes version 1.8.x through 1.14.x are vulnerable. Technologies Affected IBM Cloud...

1.9CVSS0.9AI score0.00483EPSS
Exploits0References2Affected Software2
Symantec
Symantec
•added 2019/04/09 12:0 a.m.•32 views

Microsoft Edge Chakra Scripting Engine CVE-2019-0806 Remote Memory Corruption Vulnerability

Description Microsoft Edge is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft ChakraCore Microsoft...

0.6AI score0.08957EPSS
Exploits0References1
Symantec
Symantec
•added 2019/04/09 12:0 a.m.•32 views

Microsoft Windows GDI Component CVE-2019-0849 Information Disclosure Vulnerability

Description Microsoft Windows is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in launching further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 16...

7.3AI score0.09527EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/04/09 12:0 a.m.•32 views

Microsoft Windows MS XML CVE-2019-0792 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the current user. Failed exploit attempts will likely cause a denial-of-service condition. Technologies Affected Microsoft Windows 10 Versi...

0.5AI score0.17217EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/03/12 12:0 a.m.•32 views

Microsoft Edge and Internet Explorer CVE-2019-0762 Security Bypass Vulnerability

Description Microsoft Edge and Internet Explorer are prone to a security-bypass vulnerability. An attacker can exploit this issue to bypass certain security restrictions. This may lead to other attacks. Technologies Affected Microsoft Edge Microsoft Internet Explorer 10 Microsoft Internet Explore...

6.2AI score0.04499EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2019/03/12 12:0 a.m.•32 views

Microsoft Windows MS XML CVE-2019-0756 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the current user. Failed exploit attempts will likely cause a denial-of-service condition. Technologies Affected Microsoft Windows 10 Versi...

0.5AI score0.12499EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/03/12 12:0 a.m.•32 views

Microsoft Windows Subsystem for Linux CVE-2019-0692 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to execute arbitrary code with elevated privileges. Technologies Affected Microsoft Windows 10 Version 1709 for ARM64-based Systems Microsoft Windows 10 Version 1803 for 32-bit...

3.1AI score0.00934EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2019/03/05 12:0 a.m.•32 views

Xen CVE-2019-17341 Privilege Escalation Vulnerability

Description Xen is prone to a privilege-escalation vulnerability. An attacker can exploit this issue to gain elevated privileges. Technologies Affected Xen Xen 2.0 Xen Xen 3.0.2 Xen Xen 3.0.3 Xen Xen 3.0.4 Xen Xen 3.1 Xen Xen 3.1.3 Xen Xen 3.1.4 Xen Xen 3.2 Xen Xen 3.2.0 Xen Xen 3.2.1 Xen Xen 3.2...

0.5AI score0.00259EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2018/12/11 12:0 a.m.•32 views

Microsoft Windows Kernel CVE-2018-8621 Local Information Disclosure Vulnerability

Description Microsoft Windows is prone to a local information-disclosure vulnerability. Local attackers can exploit this issue to obtain sensitive information that may lead to further attacks. Technologies Affected Microsoft Windows 7 for 32-bit Systems SP1 Microsoft Windows 7 for x64-based Syste...

2AI score0.01835EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2018/12/11 12:0 a.m.•32 views

Microsoft Dynamics NAV CVE-2018-8651 Cross Site Scripting Vulnerability

Description Microsoft Dynamics NAV is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may...

5.7AI score0.01463EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2018/12/11 12:0 a.m.•32 views

Microsoft Windows CVE-2018-8612 Local Denial of Service Vulnerability

Description Microsoft Windows is prone to a local denial-of-service vulnerability. An attacker can exploit this issue to restart the affected system, denying service to legitimate users. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 f...

1.9AI score0.01383EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2018/12/11 12:0 a.m.•32 views

Microsoft Office SharePoint CVE-2018-8650 Cross Site Scripting Vulnerability

Description Microsoft Office SharePoint is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This...

5.4AI score0.01587EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2018/12/11 12:0 a.m.•32 views

Microsoft Edge Chakra Scripting Engine CVE-2018-8617 Remote Memory Corruption Vulnerability

Description Microsoft Edge is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft ChakraCore Microsoft...

0.6AI score0.62483EPSS
Exploits3References1
Symantec
Symantec
•added 2018/09/11 12:0 a.m.•32 views

Microsoft Internet Explorer CVE-2018-8461 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Internet Explorer 11 is vulnerable...

0.2AI score0.12895EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2018/09/11 12:0 a.m.•32 views

Microsoft Windows DirectX Graphics Kernel CVE-2018-8462 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to run processes with elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for x64-based Syste...

2.9AI score0.01192EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2018/08/14 12:0 a.m.•32 views

Microsoft Internet Explorer and Edge CVE-2018-8357 Remote Privilege Escalation Vulnerability

Description Microsoft Internet Explorer and Edge are prone to a remote privilege-escalation vulnerability. An attacker can exploit this issue to gain elevated privileges. Successful exploits may aid in further attacks. Technologies Affected Microsoft Edge Microsoft Internet Explorer 11...

7AI score0.0777EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2018/07/10 12:0 a.m.•32 views

Microsoft Windows CVE-2018-8309 Local Denial of Service Vulnerability

Description Microsoft Windows is prone to a local denial-of-service vulnerability. An attacker can exploit this issue to restart the affected system, denying service to legitimate users. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 f...

1.5AI score0.01581EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2018/07/10 12:0 a.m.•32 views

Microsoft Edge CVE-2018-8274 Remote Memory Corruption Vulnerability

Description Microsoft Edge is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft Edge Recommendations...

0.5AI score0.19229EPSS
Exploits0
Symantec
Symantec
•added 2018/07/10 12:0 a.m.•32 views

Microsoft SharePoint Server CVE-2018-8299 Remote Privilege Escalation Vulnerability

Description Microsoft SharePoint Server is prone to a remote privilege-escalation vulnerability because it fails to properly sanitize user-supplied input. An attacker may exploit this issue to gain elevated privileges. Successful exploits may aid in further attacks. Technologies Affected Microsof...

0.2AI score0.02283EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2018/07/10 12:0 a.m.•32 views

Microsoft Windows Mail Client CVE-2018-8305 Information Disclosure Vulnerability

Description Microsoft Windows is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in further attacks. Technologies Affected Microsoft Mail and Calendar Microsoft People Recommendations Block external access at the...

6.3AI score0.07835EPSS
Exploits0
Symantec
Symantec
•added 2018/07/10 12:0 a.m.•32 views

Microsoft Edge CVE-2018-8325 Information Disclosure Vulnerability

Description Microsoft Edge is prone to an information disclosure vulnerability. Successful exploits will allow attackers to obtain sensitive information that may aid in further attacks. Technologies Affected Microsoft Edge Recommendations Run all software as a nonprivileged user with minimal acce...

4.5AI score0.0573EPSS
Exploits0
Symantec
Symantec
•added 2018/06/12 12:0 a.m.•32 views

Microsoft Windows Hyper-V Code Integrity CVE-2018-8219 Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a privilege-escalation vulnerability. An attackers may exploit this issue to gain elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for x64-based Systems Microsoft Windows 10 Version 1803 for x64-based Systems Microsoft Windows ...

1AI score0.01085EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2018/05/17 8:0 a.m.•32 views

SA149: CSRF Vulnerability in CA and MTD

SUMMARY The Symantec Content Analysis CA and Mail Threat Defense MTD management consoles are susceptible to a cross-site request forging CSRF vulnerability. A remote attacker can use phishing or other social engineering techniques to access the management console with the privileges of an...

6.8CVSS0.9AI score0.00569EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2018/05/08 12:0 a.m.•32 views

Microsoft Windows Kernel 'Win32k.sys' CVE-2018-8166 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability that occurs in the Windows kernel. A local attacker can exploit this issue to execute arbitrary code in kernel mode with elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit...

3AI score0.01169EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2018/05/08 12:0 a.m.•32 views

Microsoft Office CVE-2018-8157 Remote Code Execution Vulnerability

Description Microsoft Office is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected Microsoft...

1.3AI score0.23069EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2018/05/08 12:0 a.m.•32 views

Microsoft Windows Kernel CVE-2018-8127 Local Information Disclosure Vulnerability

Description Microsoft Windows is prone to a local information-disclosure vulnerability. Local attackers can exploit this issue to obtain sensitive information that may lead to further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version...

1.3AI score0.02785EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2018/05/08 12:0 a.m.•32 views

Microsoft Excel CVE-2018-8147 Remote Code Execution Vulnerability

Description Microsoft Excel is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected Microsoft...

1AI score0.23069EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2018/05/08 12:0 a.m.•32 views

Microsoft Edge Scripting Engine CVE-2018-0945 Remote Memory Corruption Vulnerability

Description Microsoft Edge is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft ChakraCore Microsoft...

0.5AI score0.14512EPSS
Exploits0References1
Symantec
Symantec
•added 2018/05/08 12:0 a.m.•32 views

Microsoft Edge CVE-2018-8179 Remote Memory Corruption Vulnerability

Description Microsoft Edge is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue by enticing an unsuspecting user to view a specially crafted web page. This could allow the attacker to execute arbitrary code in the context of the currently logged-in user. Failed...

0.9AI score0.12895EPSS
Exploits0
Symantec
Symantec
•added 2018/04/10 12:0 a.m.•32 views

Microsoft Windows Kernel CVE-2018-0968 Local Information Disclosure Vulnerability

Description Microsoft Windows is prone to a local information-disclosure vulnerability. Local attackers can exploit this issue to obtain sensitive information that may lead to further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version...

1.3AI score0.03692EPSS
Exploits1Affected Software3
Symantec
Symantec
•added 2018/04/10 12:0 a.m.•32 views

Microsoft Windows Device Guard CVE-2018-0966 Remote Security Bypass Vulnerability

Description Microsoft Windows is prone to a remote security-bypass vulnerability. An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions. This may aid in further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit System...

2.2AI score0.0236EPSS
Exploits1Affected Software2
Symantec
Symantec
•added 2018/04/10 12:0 a.m.•32 views

Microsoft Windows Kernel CVE-2018-0972 Local Information Disclosure Vulnerability

Description Microsoft Windows is prone to a local information-disclosure vulnerability. Local attackers can exploit this issue to obtain sensitive information that may lead to further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version...

1.3AI score0.0358EPSS
Exploits1Affected Software3
Symantec
Symantec
•added 2018/03/13 12:0 a.m.•32 views

Microsoft ChakraCore Scripting Engine CVE-2018-0936 Remote Memory Corruption Vulnerability

Description Microsoft ChakraCore is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft ChakraCore...

7.8AI score0.15556EPSS
Exploits0References1
Symantec
Symantec
•added 2018/03/13 12:0 a.m.•32 views

Microsoft Windows Kernel CVE-2018-0901 Local Information Disclosure Vulnerability

Description Microsoft Windows is prone to a local information-disclosure vulnerability. Local attackers can exploit this issue to obtain sensitive information that may lead to further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version...

5AI score0.02456EPSS
Exploits2Affected Software3
Symantec
Symantec
•added 2018/03/13 12:0 a.m.•32 views

Microsoft Access CVE-2018-0903 Remote Code Execution Vulnerability

Description Microsoft Access is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of an affected system. Failed exploit attempts may result in a denial of service condition; this can result in the attacker gaining complete...

8.3AI score0.16575EPSS
Exploits0References1Affected Software2
Symantec
Symantec
•added 2018/03/13 12:0 a.m.•32 views

Microsoft ChakraCore Scripting Engine CVE-2018-0937 Remote Memory Corruption Vulnerability

Description Microsoft ChakraCore is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft ChakraCore...

7.8AI score0.15556EPSS
Exploits0References1
Symantec
Symantec
•added 2018/03/13 12:0 a.m.•32 views

Microsoft Edge CVE-2018-0876 Remote Memory Corruption Vulnerability

Description Microsoft Edge is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft Edge Recommendations...

7.8AI score0.15875EPSS
Exploits0References1
Symantec
Symantec
•added 2018/03/13 12:0 a.m.•32 views

Microsoft ChakraCore Scripting Engine CVE-2018-0931 Remote Memory Corruption Vulnerability

Description Microsoft ChakraCore is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft ChakraCore...

7.8AI score0.11719EPSS
Exploits0References1
Symantec
Symantec
•added 2018/03/13 12:0 a.m.•32 views

Microsoft SharePoint Server CVE-2018-0909 Remote Privilege Escalation Vulnerability

Description Microsoft SharePoint Server is prone to a remote privilege-escalation vulnerability because it fails to properly sanitize user-supplied input. An attacker may exploit this issue to gain elevated privileges. Successful exploits may aid in further attacks. Technologies Affected Microsof...

8.8AI score0.04708EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2018/03/13 12:0 a.m.•32 views

Microsoft Internet Explorer Scripting Engine CVE-2018-0889 Remote Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Internet Explorer 9, 10 and 11 are...

7.8AI score0.15875EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2018/02/27 12:0 a.m.•32 views

NTP CVE-2018-7185 Denial of Service Vulnerability

Description NTP is prone to a denial-of-service vulnerability. An attacker can exploit this issue to cause a denial-of-service condition, denying service to legitimate users. NTP version 4.2.6 prior to 4.2.8p11 are vulnerable. Technologies Affected IBM AIX 5.3 IBM AIX 6.1 IBM AIX 7.1 IBM Aix 7.2...

5CVSS0.5AI score0.09239EPSS
Exploits0References2Affected Software10
Symantec
Symantec
•added 2018/02/13 12:0 a.m.•32 views

Microsoft Windows Kernel CVE-2018-0809 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code in kernel mode with elevated privileges. Technologies Affected Microsoft Windows 10 version 1703 for 32-bit Systems Microsoft Windows 10 version...

6.9CVSS6.4AI score0.01197EPSS
Exploits1Affected Software1
Symantec
Symantec
•added 2018/01/23 8:0 a.m.•32 views

SA158: Improper Restriction of Excessive Authentication Attempts in Reporter

SUMMARY Symantec Reporter does not restrict excessive authentication attempts for management interface users. A remote attacker can use brute force search to guess a user password and gain access to Reporter. AFFECTED PRODUCTS Reporter --- CVE | Affected Versions | Remediation CVE-2017-15531 | 10...

5CVSS1.6AI score0.02367EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2018/01/03 12:0 a.m.•32 views

Microsoft Edge Scripting Engine CVE-2018-0773 Remote Memory Corruption Vulnerability

Description Microsoft Edge is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft Edge Recommendations...

7.6CVSS7.8AI score0.08643EPSS
Exploits0
Total number of security vulnerabilities5000