Lucene search
K
SymantecRecent

6867 matches found

Symantec
Symantec
•added 2019/10/29 12:0 a.m.•26 views

Redhat Syndesis CVE-2019-14860 Information Disclosure Vulnerability

...

4.3CVSS1.1AI score0.01165EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2019/10/29 12:0 a.m.•29 views

Apple watchOS CVE-2019-8747 Memory Corruption Vulnerability

Description Apple watchOS is prone to memory corruption vulnerability. Attackers can exploit this issue to execute arbitrary code and perform unauthorized actions. Failed exploit attempts may result in a denial-of-service condition. Technologies Affected Apple Watch Apple watchOS 1.0 Apple watchO...

8.2AI score0.01217EPSS
Exploits0References2Affected Software1
Symantec
Symantec
•added 2019/10/29 12:0 a.m.•40 views

Fortinet FortiClient for macOS CVE-2019-17650 Local Command Injection Vulnerability

Description Fortinet FortiClient for macOS is prone to a local command-injection vulnerability. An attacker may exploit this issue to inject and execute arbitrary commands with root privileges. Versions prior to FortiClient for macOS 6.2.2 are vulnerable. Technologies Affected Fortinet FortiClien...

1.2AI score0.00436EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/29 12:0 a.m.•22 views

Apple iOS and macOS Multiple Security Vulnerabilities

Description Apple iOS and macOS are prone to multiple security vulnerabilities. Attackers can exploit these issues to gain sensitive information or execute arbitrary code. This may aid in further attacks. Technologies Affected Apple iOS 10 Apple iOS 10.0.1 Apple iOS 10.1 Apple iOS 10.2 Apple iOS...

0.4AI score
Exploits0References1Affected Software2
Symantec
Symantec
•added 2019/10/29 12:0 a.m.•16 views

WebKit Cross Site Scripting and Multiple Memory Corruption Vulnerabilities

Description WebKit is prone to cross-site scripting and multiple memory-corruption vulnerabilities. Attackers can exploit these issues to execute arbitrary code on the affected system. Failed exploit attempts may result in a denial-of-service condition. Technologies Affected Apple Watch Apple...

Exploits0References2Affected Software1
Symantec
Symantec
•added 2019/10/29 12:0 a.m.•29 views

Samba CVE-2019-14847 Remote Denial of Service Vulnerability

Description Samba is prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to cause the application to crash, denying service to legitimate users. Samba version 4.0.0 through 4.10.9 are vulnerable. Technologies Affected Samba Samba 4.0.0 Samba Samba 4.0.1 Samba Sam...

0.5AI score0.02355EPSS
Exploits1References1Affected Software2
Symantec
Symantec
•added 2019/10/29 12:0 a.m.•13 views

Apple macOS Multiple Security Vulnerabilities

Description Apple macOS is prone to multiple security vulnerabilities. Attackers can exploit these issues to execute arbitrary code, gain elevated privileges, obtain sensitive information or cause denial-of-service conditions. Technologies Affected Apple macOS 10.12 Apple macOS 10.12.1 Apple macO...

0.4AI score
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/29 12:0 a.m.•31 views

Apple macOS/watchOS/iCloud for Windows CVE-2019-8750 Memory Corruption Vulnerability

Description Apple macOS, watchOS and iCloud for Windows are prone to a memory corruption vulnerability. Attackers can exploit this issue to execute arbitrary code and perform unauthorized actions. Failed exploit attempts may result in a denial-of-service condition. Technologies Affected Apple Wat...

0.8AI score0.01635EPSS
Exploits0References1Affected Software3
Symantec
Symantec
•added 2019/10/28 12:0 a.m.•26 views

Broadcom Brocade SANnav CVE-2019-16207 Hardcoded Credentials Vulnerability

Description Broadcom Brocade SANnav is prone to a hard-coded credentials vulnerability. An attacker can exploit this issue to gain unauthorized access to the vulnerable system and perform unauthorized actions. Versions prior to Brocade SANnav 2.0 are vulnerable. Technologies Affected Broadcom...

4.6CVSS0.8AI score0.00254EPSS
Exploits0References1
Symantec
Symantec
•added 2019/10/28 12:0 a.m.•43 views

Multiple Trend Micro Products CVE-2019-18189 Unspecified Directory Traversal Vulnerability

Description Multiple Trend Micro products are prone to an unspecified directory-traversal vulnerability. Remote attackers can use specially crafted requests with directory-traversal sequences '../' to access arbitrary files that contain sensitive information. This may aid in further attacks. The...

0.1AI score0.04538EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2019/10/28 12:0 a.m.•49 views

Broadcom Brocade SANnav CVE-2019-16206 Information Disclosure Vulnerability

Description Broadcom Brocade SANnav is prone to an information disclosure vulnerability Successfully exploiting this issue may allow an attacker to obtain sensitive information that may aid in further attacks or cause a denial-of-service condition. Versions prior to Brocade SANnav 2.0 are...

2.1CVSS5.3AI score0.00203EPSS
Exploits0References1
Symantec
Symantec
•added 2019/10/28 12:0 a.m.•43 views

Broadcom Brocade SANnav CVE-2019-16210 Information Disclosure Vulnerability

Description Broadcom Brocade SANnav is prone to an information disclosure vulnerability Successfully exploiting this issue may allow an attacker to obtain sensitive information that may aid in further attacks or cause a denial-of-service condition. Versions prior to Brocade SANnav 2.0 are...

2.1CVSS5.3AI score0.00205EPSS
Exploits0References1
Symantec
Symantec
•added 2019/10/28 12:0 a.m.•25 views

Broadcom Brocade SANnav CVE-2019-16209 SSL Certificate Validation Security Bypass Vulnerability

Description Broadcom Brocade SANnav is prone to a security-bypass vulnerability. An attacker can exploit this issue to perform man-in-the-middle attacks and perform certain unauthorized actions, which will aid in further attacks. Versions prior to Brocade SANnav 2.0 are vulnerable. Technologies...

5.8CVSS0.2AI score0.0074EPSS
Exploits0References1
Symantec
Symantec
•added 2019/10/28 12:0 a.m.•38 views

Fortinet FortiExtender CVE-2019-15710 OS Command Injection Vulnerability

Description Fortinet FortiExtender is prone to an OS command-injection vulnerability because it fails to properly sanitize user-supplied input. An attacker may exploit this issue to inject and execute arbitrary commands within the context of the affected application; this may aid in further...

0.1AI score0.01907EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/28 12:0 a.m.•40 views

Broadcom Brocade SANnav CVE-2019-16205 Session Hijacking Vulnerability

Description Broadcom Brocade SANnav is prone to a session-hijacking vulnerability. An attacker can exploit this issue to hijack another user's session and gain unauthorized access to the victim's account on the affected system. Versions prior to Brocade SANnav 2.0 are vulnerable. Technologies...

4.3CVSS2AI score0.01293EPSS
Exploits0References1
Symantec
Symantec
•added 2019/10/28 12:0 a.m.•72 views

Trend Micro OfficeScan CVE-2019-18187 Directory Traversal Vulnerability

Description Trend Micro OfficeScan is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input. An attacker can exploit this issue using directory-traversal characters '../' to access or read arbitrary files that contain sensitive information or t...

1AI score0.25125EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2019/10/28 12:0 a.m.•17 views

Apple iOS/iPadOS/tvOS/watchOS/macOS Multiple Security Vulnerabilities

Description Apple iOS, iPadOS, tvOS, watchOS and macOS are prone to the following security vulnerabilities: 1. A denial-of-service vulnerability 2. An authentication-bypass vulnerability 3. Multiple memory-corruption vulnerabilities 4. An information disclosure vulnerability An attacker can...

0.1AI score
Exploits0References3Affected Software5
Symantec
Symantec
•added 2019/10/28 12:0 a.m.•27 views

Trend Micro Apex One CVE-2019-18188 Command Injection Vulnerability

Description Trend Micro Apex One is prone to a command-injection vulnerability because it fails to properly sanitize user-supplied input. Successfully exploiting this issue may allow an attacker to execute arbitrary code in the context of the affected application. Failed exploit attempts will...

0.1AI score0.04661EPSS
Exploits0
Symantec
Symantec
•added 2019/10/28 12:0 a.m.•37 views

phpMyAdmin CVE-2019-18622 SQL Injection Vulnerability

Description phpMyAdmin is prone to an SQL-injection vulnerability because it fails to properly sanitize user-supplied input before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the...

1.4AI score0.02579EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2019/10/28 12:0 a.m.•29 views

Broadcom Brocade SANnav CVE-2019-16208 Weak Encryption Security Weakness

Description Broadcom Brocade SANnav is prone to a security weakness. Successfully exploiting this issue may allow an attacker to obtain sensitive information that may aid in further attacks. Versions prior to Brocade SANnav 2.0 are vulnerable. Technologies Affected Broadcom Brocade SANnav...

5CVSS7.4AI score0.00405EPSS
Exploits0References1
Symantec
Symantec
•added 2019/10/28 12:0 a.m.•14 views

WebKit Cross Site Scripting and Multiple Memory Corruption Vulnerabilities

Description WebKit is prone to a cross-site scripting vulnerability and multiple memory-corruption vulnerabilities. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site or execute arbitrary code in the...

1AI score
Exploits0References1Affected Software5
Symantec
Symantec
•added 2019/10/28 12:0 a.m.•31 views

Apple tvOS/iOS/iPadOS CVE-2019-8795 Memory Corruption Vulnerability

Description Apple iOS, iPad and tvOS are prone to a memory-corruption vulnerability. A remote attacker can leverage this issue to execute arbitrary code with system privileges. Failed exploit attempts may result in a denial-of-service condition. Technologies Affected Apple Ipad Mini- Apple TV App...

8.1AI score0.01328EPSS
Exploits0References2Affected Software3
Symantec
Symantec
•added 2019/10/25 12:0 a.m.•26 views

McAfee Total Protection Windows Client CVE-2019-3636 Local Security Bypass Vulnerability

Description McAfee Total Protection Windows client is prone to a local security-bypass vulnerability. Local attackers can exploit this issue to bypass certain security restrictions and perform unauthorized actions. This may lead to further attacks. Versions prior to McAfee Total Protection 16.0.R...

1.8AI score0.00225EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/24 6:53 p.m.•39 views

Symantec SONAR Security Bypass

SUMMARY Symantec has released an update to address an issue that was discovered in the Symantec SONAR component. AFFECTED PRODUCTS Component: SONAR Engine --- CVE | Affected Versions | Remediation CVE-2019-12752 | Prior to 12.0.2 | Upgrade to 12.0.2 Note: Live updatable; no action required by...

4.1CVSS0.7AI score0.00414EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2019/10/24 12:0 a.m.•23 views

Philips IntelliSpace Perinatal CVE-2019-13546 Local Security Bypass Vulnerability

Description Philips IntelliSpace Perinatal is prone to a local security-bypass vulnerability. Attackers can exploit this issue to bypass certain security restrictions to perform unauthorized actions. This may aid in further attacks. Philips IntelliSpace Perinatal versions K and prior are...

7.2CVSS1.4AI score0.00404EPSS
Exploits0References2
Symantec
Symantec
•added 2019/10/24 12:0 a.m.•13 views

Rittal Chiller ICSA-19-297-01 Authentication Bypass and Hardcoded Credentials Vulnerabilities

Description Rittal Chiller is prone to the following security vulnerabilities: 1. An authentication bypass vulnerability 2. A hard-coded credentials vulnerability An attacker can exploit these issues to bypass the authentication mechanism and gain unauthorized access to the affected device. This...

1.2AI score
Exploits0References2Affected Software1
Symantec
Symantec
•added 2019/10/24 12:0 a.m.•24 views

NetApp Clustered Data ONTAP CVE-2019-5508 Denial of Service Vulnerability

Description NetApp Clustered Data ONTAP is prone to a denial-of-service vulnerability. Remote attackers can exploit this issue to cause denial-of-service conditions. Clustered Data ONTAP 9.2 through 9.6 versions are vulnerable. Technologies Affected NetApp Clustered Data ONTAP 9.2 NetApp Clustere...

1.1AI score0.0132EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/24 12:0 a.m.•40 views

Qt QtBase Module CVE-2019-18281 Denial of Service Vulnerability

Description Qt QtBase module is prone to a denial-of-service vulnerability. An attacker can exploit this issue to cause the application to crash, denying service to legitimate users. Qt QtBase module version 5.11.x and 5.12.x prior to 5.12.5 are vulnerable. Technologies Affected Qt Qt Base 5.11.0...

1.9AI score0.0205EPSS
Exploits0References3Affected Software1
Symantec
Symantec
•added 2019/10/24 12:0 a.m.•47 views

Elasticsearch Logstash Beats Input Plugin CVE-2019-7620 Denial of Service Vulnerability

Description Elasticsearch Logstash is prone to a denial-of-service vulnerability. An attacker can exploit this issue to cause the the application to stop responding, denying service to legitimate users. Technologies Affected Elasticsearch Logstash 1.0.14 Elasticsearch Logstash 1.0.15 Elasticsearc...

0.4AI score0.0153EPSS
Exploits0References3Affected Software1
Symantec
Symantec
•added 2019/10/24 12:0 a.m.•3757 views

PHP CVE-2019-11043 Remote Code Execution Vulnerability

Description PHP is prone to a remote code-execution vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the user running the affected application. Failed exploit attempts will likely cause a denial-of-service condition. Technologies Affected PHP PHP 7.0 PHP...

9.9AI score0.9947EPSS
Exploits54References4Affected Software1
Symantec
Symantec
•added 2019/10/24 12:0 a.m.•17 views

Honeywell IP-AK2 CVE-2019-13525 Information Disclosure Vulnerability

Description Honeywell IP-AK2 is prone to an information-disclosure vulnerability. An attacker can exploit this issue to obtain sensitive information that may aid in further attacks. Honeywell IP-AK2 Access Control Panel version 1.04.07 and prior are vulnerable. Technologies Affected Honeywell...

1AI score0.0125EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/24 12:0 a.m.•35 views

IBM Security Guardium Big Data Intelligence CVE-2019-4311 Information Disclosure Vulnerability

Description IBM Security Guardium Big Data Intelligence is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in further attacks. Security Guardium Big Data Intelligence 4.0 is vulnerable; other versions may also be...

1.7AI score0.01245EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2019/10/24 12:0 a.m.•43 views

GNU GRUB2 'grub2-set-bootflag' Utility Local Denial of Service Vulnerability

Description GNU GRUB2 is prone to a local denial-of-service vulnerability. A local attacker can exploit this issue to cause a denial-of-service condition. Technologies Affected GNU GRUB2 Redhat Enterprise Linux 8 Recommendations Permit local access for trusted individuals only. Where possible, us...

1AI score
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/24 12:0 a.m.•30 views

Multiple VMware Products CVE-2019-5536 Denial of Service Vulnerability

Description Multiple VMware products are prone to a denial-of-service vulnerability. An attacker can exploit this issue to cause a denial-of-service condition. Technologies Affected VMWare Esxi 6.5 VMWare Esxi 6.7 VMWare Fusion 11.0 VMWare Fusion 11.0.1 VMWare Fusion 11.0.2 VMWare Fusion 11.0.3...

1.4AI score0.02117EPSS
Exploits0References1Affected Software3
Symantec
Symantec
•added 2019/10/24 12:0 a.m.•13 views

VMware vCenter Server Appliance Multiple Information Disclosure Vulnerabilities

Description VMware vCenter Server Appliance is prone to multiple information-disclosure vulnerabilities. Attackers can exploit these issues to obtain sensitive information that may aid in further attacks. VMware vCenter Server 6.5 and 6.7 are vulnerable; other versions may also be affected...

0.7AI score
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/24 12:0 a.m.•39 views

D-Link DAP-1320 Wireless Range Extender CVE-2019-17505 Information Disclosure Vulnerability

Description D-Link DAP-1320 Wireless Range Extender is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information and perform unauthorized actions. D-Link DAP-1320 Rev A2 version 1.21 is vulnerable. Other versions may also be affected...

5CVSS0.5AI score0.01685EPSS
Exploits1References1Affected Software1
Symantec
Symantec
•added 2019/10/24 12:0 a.m.•144 views

Elasticsearch CVE-2019-7619 Information Disclosure Vulnerability

Description Elasticsearch is prone to an information-disclosure vulnerability. An attacker can exploit this issue to gain access to sensitive information; this may lead to further attacks. Versions prior to Elasticsearch 7.4.0 or 6.8.4 are vulnerable. Technologies Affected Elasticsearch...

0.8AI score0.02429EPSS
Exploits0References2Affected Software1
Symantec
Symantec
•added 2019/10/23 12:0 a.m.•79 views

Apache POI CVE-2019-12415 XML External Entity Information Disclosure Vulnerability

Description Apache POI is prone to an information-disclosure vulnerability. An attacker can exploit this issue to gain access to sensitive information that may lead to further attacks. Apache POI version 4.1.0 and prior are vulnerable. Technologies Affected Apache POI 0.1 Apache POI 0.10.0 Apache...

2.1CVSS1AI score0.0099EPSS
Exploits0References1Affected Software8
Symantec
Symantec
•added 2019/10/23 12:0 a.m.•38 views

Adobe Acrobat and Reader CVE-2019-8238 Information Disclosure Vulnerability

Description Adobe Acrobat and Reader are prone to information-disclosure vulnerability. An attacker can exploit this issue to gain access to sensitive information that may aid in further attacks. Technologies Affected Adobe Acrobat 2017.008.30051 Adobe Acrobat 2017.011.30059 Adobe Acrobat...

7.8AI score0.04659EPSS
Exploits0Affected Software4
Symantec
Symantec
•added 2019/10/23 12:0 a.m.•52 views

Adobe Acrobat and Reader CVE-2019-8237 Security Bypass Vulnerability

Description Adobe Acrobat and Reader are prone to a security-bypass vulnerability. Successfully exploiting this issue will allow attackers to bypass security restrictions and perform unauthorized actions; this may aid in launching further attacks. Technologies Affected Adobe Acrobat 2017.008.3005...

0.1AI score0.02801EPSS
Exploits0Affected Software4
Symantec
Symantec
•added 2019/10/23 12:0 a.m.•10 views

Multiple Jenkins Plugins Multiple Security Vulnerabilities

...

1.8AI score
Exploits0Affected Software10
Symantec
Symantec
•added 2019/10/23 12:0 a.m.•28 views

Multiple IBM Products CVE-2019-4400 Directory Traversal Vulnerability

Description Multiple IBM Products are prone to a directory-traversal vulnerability. An attacker can exploit this issue using directory-traversal characters '../' to read arbitrary files that contain sensitive information or to access files outside of the restricted directory to obtain sensitive...

0.9AI score0.01359EPSS
Exploits0References1Affected Software2
Symantec
Symantec
•added 2019/10/23 12:0 a.m.•21 views

IBM Security Guardium Big Data Intelligence CVE-2019-4314 Information Disclosure Vulnerability

Description IBM Security Guardium Big Data Intelligence is prone to an information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in further attacks. Security Guardium Big Data Intelligence 4.0 is vulnerable; other versions may also be...

1.7AI score0.00976EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2019/10/23 12:0 a.m.•16 views

IBM Liberty for Java for Cloud Multiple Security Vulnerabilities

Description IBM Liberty for Java for Cloud is prone to an information-disclosure and security bypass vulnerabilities. Attackers can exploit these issues to bypass certain security restrictions or obtain sensitive information which may lead to further attacks. Technologies Affected IBM...

0.1AI score
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/23 12:0 a.m.•34 views

Multiple IBM Products CVE-2019-4394 Local Security Vulnerability

Description Multiple IBM Products are prone to a local security vulnerability. Successfully exploiting this issue will allow attackers to perform unauthorized actions; this may aid in launching further attacks. Technologies Affected IBM Cloud Orchestrator 2.4 IBM Cloud Orchestrator 2.4.0.1 IBM...

2.1CVSS1.2AI score0.00285EPSS
Exploits0References1Affected Software2
Symantec
Symantec
•added 2019/10/23 12:0 a.m.•35 views

CODESYS ENI Server CVE-2019-16265 Stack Buffer Overflow Vulnerability

Description CODESYS ENI Server is prone to a stack-based buffer-overflow vulnerability. Exploiting this issue may allow remote attackers to execute arbitrary code within the context of the affected application. Failed attacks will cause denial-of-service conditions. CODESYS ENI Server versions...

7.5CVSS0.4AI score0.01636EPSS
Exploits0References1Affected Software2
Symantec
Symantec
•added 2019/10/23 12:0 a.m.•16 views

OpenSC Multiple Denial of Service Vulnerabilities

Description OpenSC is prone to multiple denial-of-service vulnerabilities. An attacker can exploit this issue to cause denial-of-service conditions. OpenSC through version 0.19.0 and 0.20.x through 0.20.0-rc3 are vulnerable. Technologies Affected Opensc-Project Opensc 0.10.0 Opensc-Project Opensc...

0.2AI score
Exploits0References7Affected Software1
Symantec
Symantec
•added 2019/10/23 12:0 a.m.•35 views

Cisco TelePresence Advanced Media Gateway CVE-2019-15966 Denial of Service Vulnerability

Description Cisco TelePresence Advanced Media Gateway is prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to cause a denial-of-service condition. This issue is being tracked by Cisco Bug ID CSCvr69362. Technologies Affected Cisco TelePresence Advanced Media...

2.1AI score0.01154EPSS
Exploits0References3
Symantec
Symantec
•added 2019/10/23 12:0 a.m.•26 views

IBM Cloud Orchestrator CVE-2019-4396 CRLF Injection Vulnerability

Description IBM Cloud Orchestrator is prone to a CRLF-injection vulnerability. An attacker can exploit this issue to add arbitrary headers to a webpage. This may aid in further attacks. The following versions are vulnerable: IBM Cloud Orchestrator 2.5, 2.5.0.1, 2.5.0.2, 2.5.0.3, 2.5.0.4, 2.5.0.5,...

0.6AI score0.00669EPSS
Exploits0References1Affected Software2
Symantec
Symantec
•added 2019/10/23 12:0 a.m.•28 views

Multiple IBM Products CVE-2019-4461 HTTP Response Splitting Vulnerability

Description Multiple IBM Products are prone to an HTTP response-splitting vulnerability. Attackers can leverage this issue to influence or misrepresent how web content is served, cached, or interpreted. This could aid in various attacks that try to entice client users into having a false sense of...

3.5CVSS0.1AI score0.00561EPSS
Exploits0References1Affected Software2
Total number of security vulnerabilities6867