Lucene search
K
SymantecRecent

6867 matches found

Symantec
Symantec
•added 2019/11/06 12:0 a.m.•33 views

Cisco Web Security Appliance CVE-2019-15969 Cross Site Scripting Vulnerability

Description Cisco Web Security Appliance is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. Thi...

0.4AI score0.00801EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/11/06 12:0 a.m.•31 views

Multiple Cisco Products CVE-2019-15289 Denial of Service Vulnerability

Description Multiple Cisco Products are prone to a denial-of-service vulnerability. An attacker can exploit this issue to cause a denial-of-service condition. This issue is being tracked by Cisco Bug IDs CSCvq12177, CSCvq29889 and CSCvq65302. Technologies Affected Cisco RoomOS Software Cisco...

1.1AI score0.01374EPSS
Exploits0References1Affected Software2
Symantec
Symantec
•added 2019/11/05 12:0 a.m.•39 views

Artifex Ghostscript CVE-2019-14869 Remote Privilege Escalation Vulnerability

Description Ghostscript is prone to a remote privilege-escalation vulnerability. A remote attacker can exploit this issue to gain elevated privileges and access arbitrary files or execute arbitrary commands on the affected system. Versions prior to Ghostscript 9.50 are vulnerable. Technologies...

0.8AI score0.03434EPSS
Exploits0References3Affected Software25
Symantec
Symantec
•added 2019/11/05 12:0 a.m.•75 views

SQLite CVE-2019-16168 Denial of Service Vulnerability

Description SQLite is prone to a denial of service vulnerability. Attackers can exploit this issue to cause denial-of-service conditions. SQLite 3.29.0 and prior versions are vulnerable. Technologies Affected Oracle Communications Design Studio 7.3.4.3.0 Oracle Communications Design Studio...

4.3CVSS1AI score0.04253EPSS
Exploits0References4Affected Software4
Symantec
Symantec
•added 2019/11/05 12:0 a.m.•65 views

Squid Multiple Security Vulnerabilities

Description Squid is prone to the following vulnerabilities: 1. Multiple buffer-overflow vulnerabilities. 2. An information disclosure vulnerability. 3. A cross-site request-forgery vulnerability. 4. An HTTP request-splitting vulnerability 5. A security-bypass vulnerability. Successful...

8AI score
Exploits0References9Affected Software2
Symantec
Symantec
•added 2019/11/05 12:0 a.m.•13 views

Multiple Trend Micro Products Multiple Security Vulnerabilities

Description Multiple Trend Micro Products are prone to the following security vulnerabilities: 1. An information-disclosure vulnerability 2. An arbitrary file-deletion vulnerability An attacker can exploit this issue to obtain sensitive information or delete arbitrary files from the affected...

0.6AI score
Exploits0Affected Software2
Symantec
Symantec
•added 2019/11/05 12:0 a.m.•51 views

Joomla! Core CVE-2019-18674 Information Disclosure Vulnerability

Description Joomla! Core is prone to a remote information-disclosure vulnerability. Attackers can exploit this issue to gain access to sensitive information that may aid in further attacks. Joomla! Core versions 3.6.0 through 3.9.12 are vulnerable. Technologies Affected Joomla Joomla! 3.2 Joomla...

0.6AI score0.01093EPSS
Exploits0References1
Symantec
Symantec
•added 2019/11/05 12:0 a.m.•34 views

Linux Kernel CVE-2019-18786 Information Disclosure Vulnerability

Description Linux kernel is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in launching further attacks. Linux kernel versions through 5.3.8 are vulnerable. Technologies Affected Linux kernel 2.0.0 Linux kernel 2.0.1...

2.1CVSS1.2AI score0.00347EPSS
Exploits0References2Affected Software1
Symantec
Symantec
•added 2019/11/05 12:0 a.m.•45 views

Multiple Veritas Products CVE-2019-18780 Arbitrary Command Injection Vulnerability

Description Multiple Veritas products are prone to an arbitrary command-injection vulnerability because they fail to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary shell commands in the context of the affected application. Failed exploit attempts...

10CVSS0.9AI score0.06138EPSS
Exploits0References1Affected Software4
Symantec
Symantec
•added 2019/11/05 12:0 a.m.•31 views

Linux Kernel Multiple Security Vulnerabilities

Description Linux Kernel is prone to the following security vulnerabilities: 1. A security-bypass vulnerability 2. A local privilege-escalation vulnerability An attacker can exploit these issues to bypass certain security restrictions and perform unauthorized actions or gain elevated privileges...

1.2AI score0.00533EPSS
Exploits1References4Affected Software1
Symantec
Symantec
•added 2019/11/04 12:0 a.m.•12 views

Google Android Media Framework Multiple Local Privilege Escalation Vulnerabilities

Description Google Android is prone to multiple local privilege-escalation vulnerabilities. A local attacker can exploit these issues to execute arbitrary code with elevated privileges within the context of the privileged process. These issues are being tracked by Android Bug IDs A-137283376,...

3.1AI score
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/11/04 12:0 a.m.•17 views

Apache NiFi Multiple Information Disclosure Vulnerabilities

Description Apache NiFi is prone to multiple information-disclosure vulnerabilities. Attackers can exploit this issue to obtain potentially sensitive information. This may lead to further attacks. Apache NiFi versions 1.3.0 through 1.9.2 are vulnerable. Technologies Affected Apache Nifi 1.3.0...

0.8AI score
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/11/04 12:0 a.m.•31 views

Red Hat '389-ds-base' CVE-2019-14824 Security Bypass Vulnerability

Description Red Hat '389-ds-base' is prone to a security-bypass vulnerability. Attackers can exploit this issue to bypass certain security restrictions, obtain sensitive information and perform unauthorized actions. This may aid in further attacks. Technologies Affected Redhat 389-ds-base Redhat...

6.6AI score0.013EPSS
Exploits0References3Affected Software5
Symantec
Symantec
•added 2019/11/04 12:0 a.m.•42 views

IBM Security Secret Server CVE-2019-4634 Multiple Information Disclosure Vulnerabilities

Description IBM Security Secret Server is prone to multiple information-disclosure vulnerabilities. Remote attackers can exploit these issues to obtain sensitive information that may lead to further attacks. Technologies Affected IBM Security Secret Server 10.4.0 IBM Security Secret Server 10.5.0...

6.2AI score
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/11/04 12:0 a.m.•17 views

Google Android Framework Multiple Security Vulnerabilities

Description Google Android is prone to the following security vulnerabilities: 1. Multiple privilege-escalation vulnerabilities 2. Multiple information-disclosure vulnerabilities An attacker can exploit these issues to gain elevated privileges or gain access to sensitive information; this may...

0.8AI score
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/11/04 12:0 a.m.•16 views

Google Android Binder Multiple Local Privilege Escalation Vulnerabilities

Description Google Android is prone to multiple local privilege-escalation vulnerabilities. Local attackers can exploit these issues to gain elevated privileges. These issues are being tracked by Android Bug IDs A-133758011, A-136210786. Technologies Affected Google Android Recommendations Permit...

3.8AI score
Exploits0References1
Symantec
Symantec
•added 2019/11/04 12:0 a.m.•21 views

Google Android Framework Component Multiple Information Disclosure Vulnerabilities

Description Google Android is prone to multiple information-disclosure vulnerabilities. An attacker can exploit these issues to gain access to sensitive information; this may lead to further attacks. This issue is being tracked by Android Bug IDs A-135269143, A-135270103. Technologies Affected...

0.2AI score
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/11/04 12:0 a.m.•33 views

Google Android System Component CVE-2019-2036 Privilege Escalation Vulnerability

Description Google Android is prone to a privilege-escalation vulnerability. An attackers may exploit this issue to gain elevated privileges. This issue are being tracked by Android Bug ID A-79703832. Technologies Affected Google Android 10.0 Google Android 8.0 Google Android 8.1 Google Android 9...

1.1AI score0.02038EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/11/04 12:0 a.m.•45 views

Google Pixel CVE-2019-2210 Privilege Escalation Vulnerability

Description Google Pixel is prone to a privilege-escalation vulnerability. An attackers may exploit this issue to gain elevated privileges. This issue are being tracked by Android Bug ID A-139148442. Technologies Affected Google Android 10.0 Google Android 9.0 Google Pixel 2 Google Pixel 2 XL...

0.6AI score0.00173EPSS
Exploits0References1Affected Software2
Symantec
Symantec
•added 2019/11/04 12:0 a.m.•30 views

Apache Impala CVE-2019-10084 Authorization Bypass Vulnerability

Description Apache Impla is prone to a authorization-bypass vulnerability. An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions or gain elevated privileges; this may aid in launching further attacks. Apache Impala versions 2.7.0 through 3.2.0...

4.6CVSS1AI score0.00994EPSS
Exploits0References4Affected Software1
Symantec
Symantec
•added 2019/11/04 12:0 a.m.•28 views

Google Android Library CVE-2019-2201 Remote Code Execution Vulnerability

Description Google Android is prone to a remote code execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of the affected application. This issue is being tracked by Android bug ID A-120551338. Technologies Affected Google Android 10.0 Google Androi...

1.2AI score0.02461EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/11/04 12:0 a.m.•33 views

IBM QRadar SIEM CVE-2019-4470 Unspecified Cross Site Scripting Vulnerability

Description IBM QRadar SIEM is prone to an unspecified cross-site scripting vulnerability. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based...

3.5CVSS0.4AI score0.00561EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2019/11/04 12:0 a.m.•33 views

Dell EMC iDRAC CVE-2019-3764 Unauthorized Access Vulnerability

Description Dell EMC iDRAC is prone to an unauthorized-access vulnerability. Attackers can exploit this issue to gain unauthorized access and perform unauthorized actions. This may aid in further attacks. The following Dell products are affected: Dell EMC iDRAC8 versions prior to 2.70.70.70 are...

4CVSS1.8AI score0.00882EPSS
Exploits0References1Affected Software2
Symantec
Symantec
•added 2019/11/03 12:0 a.m.•18 views

PHP 'ReflectionNamedType' Denial of Service Vulnerability

Description PHP is prone to a denial-of-service vulnerability. Successful exploits may allow the attacker to crash the affected application resulting in denial-of-service condition. Versions prior to PHP 7.4.0 are vulnerable. Technologies Affected PHP PHP 7.3.0 PHP PHP 7.3.1 PHP PHP 7.3.10 PHP PH...

1.6AI score
Exploits0References4Affected Software1
Symantec
Symantec
•added 2019/11/03 12:0 a.m.•29 views

Redhat Quay CVE-2019-3864 Security Bypass Vulnerability

Description Redhat Quay is prone to a security-bypass vulnerability. Attackers can exploit this issue to bypass certain security restrictions and perform unauthorized actions. This may aid in further attacks. Technologies Affected Redhat Quay 3 Recommendations Block external access at the network...

0.2AI score0.0044EPSS
Exploits0References2Affected Software1
Symantec
Symantec
•added 2019/11/03 12:0 a.m.•36 views

Redhat Quay CVE-2019-3865 HTML Injection Vulnerability

Description Redhat Quay is prone to an HTML-injection vulnerability because it fails to properly sanitize user-supplied input. Successful exploits will allow attacker-supplied HTML and script code to run in the context of the affected browser, potentially allowing the attacker to steal cookie-bas...

6AI score0.00718EPSS
Exploits0References2Affected Software1
Symantec
Symantec
•added 2019/11/01 12:0 a.m.•47 views

F5 BIG-IP AFM CVE-2019-6658 SQL Injection Vulnerability

Description F5 BIG-IP AFM is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied input before using it in an SQL query. An attacker can exploit this issue to compromise the application, access or modify data, or exploit latent vulnerabilities in the...

1.3AI score0.00686EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/11/01 12:0 a.m.•101 views

Symantec Endpoint Protection SONAR Component CVE-2019-12752 Security Bypass Vulnerability

Description Symantec Endpoint Protection is prone to a security-bypass vulnerability. Successfully exploiting this issue may allow an attacker to bypass certain security restrictions and perform unauthorized actions. Symantec Endpoint Protection versions prior to 12.0.2 are vulnerable. Technologi...

1.6AI score0.00414EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2019/11/01 12:0 a.m.•69 views

Apple Xcode Multiple Memory Corruption Vulnerabilities

Description Apple Xcode is prone to multiple memory corruption vulnerabilities. A remote attacker can leverage these issues to execute arbitrary code in the context of the user running the application. Failed exploit attempts may result in a denial-of-service condition. Versions prior to Xcode 11...

8AI score
Exploits0References2Affected Software2
Symantec
Symantec
•added 2019/10/31 12:0 a.m.•131 views

Honeywell equIP/Performance Series IP Cameras/Recorders Authentication Bypass Vulnerability

Description Honeywell Tuxedo Touch Controller is prone to a remote authentication-bypass vulnerability. An attacker can exploit this issue to bypass the authentication mechanism and perform unauthorized actions. This may aid in further attacks. Technologies Affected Honeywell BD3PR1 Honeywell...

7.6AI score
Exploits0References1
Symantec
Symantec
•added 2019/10/31 12:0 a.m.•15 views

Advantech WISE-PaaS/RMM Multiple Security Vulnerabilities

...

1.9AI score
Exploits0
Symantec
Symantec
•added 2019/10/31 12:0 a.m.•33 views

Xen CVE-2019-18423 Denial of Service Vulnerability

Description Xen is prone to a denial-of-service vulnerability. An attacker can exploit this issue to crash hypervisor, denying service to legitimate users. Xen version 4.8 and later are vulnerable. Technologies Affected Xen Xen 4.10 Xen Xen 4.10.0 Xen Xen 4.10.1 Xen Xen 4.10.2 Xen Xen 4.11.0 Xen...

1.4AI score0.02059EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/31 12:0 a.m.•33 views

Xen CVE-2019-18420 Denial of Service Vulnerability

Description Xen is prone to a denial-of-service vulnerability. Attackers can exploit this issue to crash the affected application, denying service to legitimate users. Xen Xen version 4.6 and later are vulnerable. Technologies Affected Xen Xen 4.10 Xen Xen 4.10.0 Xen Xen 4.10.1 Xen Xen 4.10.2 Xen...

1.8AI score0.02522EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/31 12:0 a.m.•34 views

Xen CVE-2019-18421 Privilege Escalation Vulnerability

Description Xen is prone to a privilege-escalation vulnerability. An attacker can exploit this issue to gain elevated privileges, obtain sensitive information or cause denial-of-service conditions. Technologies Affected Citrix Hypervisor 8.0 Citrix XenServer 7.0 Citrix XenServer 7.1 LTSR CU2 Citr...

0.1AI score0.01679EPSS
Exploits0References1Affected Software3
Symantec
Symantec
•added 2019/10/31 12:0 a.m.•45 views

Xen CVE-2019-18425 Privilege Escalation Vulnerability

Description Xen is prone to a privilege-escalation vulnerability. An attacker can exploit this issue to gain elevated privileges, obtain sensitive information or cause denial-of-service conditions. Technologies Affected Citrix Hypervisor 8.0 Citrix XenServer 7.0 Citrix XenServer 7.1 LTSR CU2 Citr...

0.1AI score0.02546EPSS
Exploits0References1Affected Software3
Symantec
Symantec
•added 2019/10/31 12:0 a.m.•40 views

Xen CVE-2019-18422 Security Vulnerability

Description Xen is prone to a security vulnerability. An attacker can exploit this issue to cause a denial-of-service condition, gain elevated privileges and corrupt the data. Xen versions through 4.12.x are vulnerable. Technologies Affected Xen Xen 2.0 Xen Xen 3.0.2 Xen Xen 3.0.3 Xen Xen 3.0.4 X...

0.8AI score0.01817EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/31 12:0 a.m.•34 views

Google Chrome Prior to 78.0.3904.87 Multiple Security Vulnerabilities

Description Google Chrome is prone to multiple security vulnerabilities. Attackers can exploit these issues to execute arbitrary code in the context of the browser or cause denial-of-service conditions. Versions prior to Chrome 78.0.3904.87 are vulnerable. Technologies Affected Google Chrome...

1.4AI score
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/31 12:0 a.m.•49 views

libarchive CVE-2019-18408 Arbitrary Code Execution Vulnerability

Description libarchive is prone to an arbitrary code-execution vulnerability. Attackers may leverage this issue to execute arbitrary code on the affected system. Failed attacks will cause denial-of-service conditions. Technologies Affected Ubuntu Ubuntu Linux 14.04 ESM Ubuntu Ubuntu Linux 16.04 L...

5CVSS1AI score0.0404EPSS
Exploits0References1Affected Software2
Symantec
Symantec
•added 2019/10/31 12:0 a.m.•42 views

Xen CVE-2019-18424 Privilege Escalation Vulnerability

Description Xen is prone to a privilege-escalation vulnerability. An attacker can exploit this issue to gain elevated privileges on the affected system. Technologies Affected Citrix Hypervisor 8.0 Citrix XenServer 7.0 Citrix XenServer 7.1 LTSR CU2 Citrix XenServer 7.6 Xen Xen 3.2.0 Xen Xen 3.2.1...

0.3AI score0.00497EPSS
Exploits0References2Affected Software3
Symantec
Symantec
•added 2019/10/31 12:0 a.m.•59 views

Apple macOS/iOS/iPadOS Multiple Information Disclosure Vulnerabilities

Description Apple iOS, iPad and macOS are prone to multiple information-disclosure vulnerabilities. Attackers can exploit these issues to obtain sensitive information that may aid in further attacks. Technologies Affected Apple Ipad Mini- Apple iOS 10 Apple iOS 10.0.1 Apple iOS 10.1 Apple iOS 10....

6.4AI score
Exploits0References1Affected Software3
Symantec
Symantec
•added 2019/10/31 12:0 a.m.•31 views

Multiple F5 BIG-IP Products CVE-2019-6657 Cross Site Scripting Vulnerability

Description Multiple F5 BIG-IP Products are prone to a cross-site scripting vulnerability because they fail to sufficiently sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site...

0.3AI score0.00641EPSS
Exploits0References1Affected Software13
Symantec
Symantec
•added 2019/10/30 12:0 a.m.•17 views

PHP 'FFI::cast()' Heap Based Memory Corruption Vulnerability

Description PHP is prone to a heap-based memory-corruption vulnerability. Successful exploits may allow the attacker to crash the affected application resulting in denial-of-service condition. Versions prior to PHP 7.4.0 are vulnerable. Technologies Affected PHP PHP 7.3.0 PHP PHP 7.3.1 PHP PHP...

0.7AI score
Exploits0References6Affected Software1
Symantec
Symantec
•added 2019/10/30 12:0 a.m.•26 views

IBM UrbanCode Deploy CVE-2019-4490 Security Bypass Vulnerability

Description IBM UrbanCode Deploy is prone to a security-bypass vulnerability. Successfully exploiting this issue may allow an attacker to bypass certain security restrictions and perform unauthorized actions. IBM UrbanCode Deploy versions 6.2.7 through 7.0.3 are vulnerable. Technologies Affected...

1.5AI score
Exploits0Affected Software1
Symantec
Symantec
•added 2019/10/30 12:0 a.m.•21 views

systemd CVE-2018-21029 Certificate Validation Security Bypass Vulnerability

Description systemd is prone to a security-bypass vulnerability. An attacker can exploit this issue to perform man-in-the-middle attacks and perform certain unauthorized actions, which will aid in further attacks. systemd versions 239 through 243 are vulnerable. Technologies Affected systemd...

7.5CVSS2.2AI score0.03138EPSS
Exploits1References3Affected Software1
Symantec
Symantec
•added 2019/10/30 12:0 a.m.•33 views

PHP 'FFI::cast()' Memory Leak Denial of Service Vulnerability

Description PHP is prone to a denial-of-service vulnerability. Attackers can exploit this issue to cause a denial of service condition. Versions prior to PHP 7.4.0 are vulnerable. Technologies Affected PHP PHP 7.3.0 PHP PHP 7.3.1 PHP PHP 7.3.10 PHP PHP 7.3.11 PHP PHP 7.3.12 PHP PHP 7.3.2 PHP PHP...

1.7AI score
Exploits0References4Affected Software1
Symantec
Symantec
•added 2019/10/29 12:0 a.m.•15 views

Apple iOS and iPadOS Multiple Local Security Vulnerabilities

Description Apple iOS and iPadOS are prone to multiple local security vulnerabilities. An attacker can exploit these issues to obtain sensitive information, execute arbitrary code and gain elevated privileges. Failed exploit attempts will likely cause a denial-of-service condition. Technologies...

7.9AI score
Exploits0References1Affected Software2
Symantec
Symantec
•added 2019/10/29 12:0 a.m.•45 views

Samba CVE-2019-10218 Path Traversal Arbitrary File Write Vulnerability

Description Samba is prone to an arbitrary file write vulnerability. Successful exploits may allow an attacker to write arbitrary files to the affected system. This may aid in further attacks. Technologies Affected Samba Samba 3.4.0 Samba Samba 3.4.1 Samba Samba 3.4.10 Samba Samba 3.4.11 Samba...

0.3AI score0.03515EPSS
Exploits0References1Affected Software2
Symantec
Symantec
•added 2019/10/29 12:0 a.m.•111 views

Samba CVE-2019-14833 Remote Security Bypass Vulnerability

Description Samba is prone to a security-bypass vulnerability. Successful exploit may allow attackers to bypass certain security restrictions and gain unauthorized access to resources. Samba versions 4.5.0 and later are vulnerable. Technologies Affected Samba Samba 4.10.1 Samba Samba 4.10.2 Samba...

0.6AI score0.02084EPSS
Exploits0References1Affected Software2
Symantec
Symantec
•added 2019/10/29 12:0 a.m.•109 views

Apple iTunes and macOS CVE-2019-8801 DLL Loading Arbitrary Code Execution Vulnerability

Description Apple iTunes and macOS are prone to an arbitrary code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the affected application. Failed exploit attempts will result in a denial of service condition. Technologies Affected Apple...

1.3AI score0.00385EPSS
Exploits0References1Affected Software2
Symantec
Symantec
•added 2019/10/29 12:0 a.m.•16 views

WebKit Multiple Memory Corruption Vulnerabilities

Description WebKit is prone to multiple memory-corruption vulnerabilities. A remote attacker can leverage these issues to execute arbitrary code in the context of the user running the application. Failed exploit attempts may result in a denial-of-service condition. Technologies Affected Apple Ipa...

0.1AI score
Exploits0References4Affected Software6
Total number of security vulnerabilities6867