Lucene search
K
SymantecRecent

6867 matches found

Symantec
Symantec
•added 2019/10/08 12:0 a.m.•100 views

Microsoft Windows CVE-2019-1166 NTLM Tampering Security Bypass Vulnerability

Description Microsoft Windows is prone to a security bypass vulnerability. Successfully exploiting this issue may allow attackers to bypass certain security restrictions and perform unauthorized actions by conducting a man-in-the-middle attack. This may lead to other attacks. Technologies Affecte...

0.7AI score0.61676EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•45 views

Microsoft Windows GDI Component CVE-2019-1363 Local Information Disclosure Vulnerability

Description Microsoft Windows is prone to a local information-disclosure vulnerability. A local attacker can leverage this issue to disclose sensitive information that may aid in further attacks. Technologies Affected Microsoft Windows 7 for 32-bit Systems SP1 Microsoft Windows 7 for x64-based...

1.6AI score0.02015EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•33 views

Microsoft Windows NTLM CVE-2019-1338 Security Bypass Vulnerability

Description Microsoft Windows is prone to a security bypass vulnerability. Successfully exploiting this issue may allow attackers to bypass certain security restrictions and perform unauthorized actions by conducting a man-in-the-middle attack. This may lead to other attacks. Technologies Affecte...

0.3AI score0.03319EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•74 views

SAP NetWeaver Process Integration CVE-2019-0379 Authentication Bypass Vulnerability

Description SAP NetWeaver Process Integration is prone to an authentication-bypass vulnerability. Remote attackers can exploit this issue to bypass the authentication mechanism and gain unauthorized access. SAP NetWeaver Process Integration version 1.0 and 2.0 are vulnerable. Technologies Affecte...

2.4AI score0.00805EPSS
Exploits0References2Affected Software1
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•35 views

Microsoft Windows Win32k CVE-2019-1364 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to execute arbitrary code in kernel mode with elevated privileges. Technologies Affected Microsoft Windows 7 for 32-bit Systems SP1 Microsoft Windows 7 for x64-based Syste...

2.3AI score0.02685EPSS
Exploits1Affected Software2
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•105 views

Microsoft Windows CloudStore CVE-2019-1321 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to gain elevated privileges. Technologies Affected Microsoft Windows 10 Version 1709 for ARM64-based Systems Microsoft Windows 10 Version 1803 for 32-bit Systems Microsoft...

2.1AI score0.00902EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•49 views

Microsoft Windows JET Database Engine CVE-2019-1358 Remote Code Execution Vulnerability

Description Microsoft Windows JET Database Engine is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of an affected system. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10...

0.7AI score0.76451EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•40 views

Microsoft Windows 'rdbss.sys' CVE-2019-1325 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to gain elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for x64-based Systems Microsoft Window...

1.6AI score0.01346EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•83 views

SAP Customer Relationship Management CVE-2019-0368 Cross Site Scripting Vulnerability

Description SAP Customer Relationship Management CRM is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. Remote attackers can exploit this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the...

0.00526EPSS
Exploits0References1Affected Software2
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•29 views

Microsoft Windows Kernel CVE-2019-1334 Local Information Disclosure Vulnerability

Description Microsoft Windows is prone to a local information-disclosure vulnerability. A local attacker can leverage this issue to obtain sensitive information that may aid in further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version...

1.2AI score0.02102EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•68 views

Microsoft Excel CVE-2019-1327 Remote Code Execution Vulnerability

Description Microsoft Excel is prone to a remote code-execution vulnerability. An attacker can leverage this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial of service conditions. Technologies Affected Microsoft...

0.8AI score0.12627EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•33 views

Microsoft Edge CVE-2019-1356 Information Disclosure Vulnerability

Description Microsoft Edge is prone to an information disclosure vulnerability. Successful exploits will allow attackers to obtain sensitive information that may aid in further attacks. Technologies Affected Microsoft Edge Recommendations Run all software as a nonprivileged user with minimal acce...

7.5AI score0.0583EPSS
Exploits0
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•31 views

Microsoft Dynamics 365 CVE-2019-1375 Cross Site Scripting Vulnerability

Description Microsoft Dynamics 365 is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may...

5.7AI score0.01456EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•102 views

Microsoft Windows Code Integrity Module CVE-2019-1344 Local Information Disclosure Vulnerability

Description Microsoft Windows is prone to a local information-disclosure vulnerability. A local attacker can leverage this issue to obtain sensitive information that may aid in further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version...

1.2AI score0.02863EPSS
Exploits1Affected Software3
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•39 views

GE Mark VIe Controller CVE-2019-13554 Authorization Bypass Vulnerability

Description GE Mark VIe Controller is prone to an authorization-bypass vulnerability. Attackers can exploit this issue to gain unauthorized access to the affected system and obtain sensitive information. This may aid in further attacks. Technologies Affected Ge Mark VIe Controller Recommendations...

2AI score0.0096EPSS
Exploits0References1
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•47 views

Microsoft Windows Error Reporting CVE-2019-1319 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. Attackers can exploit this issue to gain elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for x64-based Systems Microsoft Windows ...

1.1AI score0.00902EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•19 views

PHP 'new COM()' Denial of Service Vulnerability

Description PHP is prone to a denial-of-service vulnerability. Successful exploits may allow the attacker to crash the affected application resulting in denial-of-service condition. Versions prior to PHP 7.4.0 are vulnerable. Technologies Affected PHP PHP 7.3.0 PHP PHP 7.3.1 PHP PHP 7.3.2 PHP PHP...

1.7AI score
Exploits0References2Affected Software1
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•82 views

Microsoft Windows Imaging API CVE-2019-1311 Remote Code Execution Vulnerability

Description Microsoft Windows is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of an affected system. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for...

0.9AI score0.34205EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•52 views

Microsoft Edge and Internet Explorer CVE-2019-1357 Spoofing Vulnerability

Description Microsoft Edge and Internet Explorer are prone to a security vulnerability that may allow attackers to conduct spoofing attacks. An attacker can exploit this issue to conduct spoofing attacks and perform unauthorized actions; other attacks are also possible. Technologies Affected...

6.9AI score0.02134EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•35 views

Microsoft Windows CVE-2019-1317 Denial of Service Vulnerability

Description Microsoft Windows is prone to a denial-of-service vulnerability. An attacker can exploit this issue to cause a denial-of-service condition. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for x64-based Systems Microsoft...

1.8AI score0.00935EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•16 views

Apple macOS Multiple Security Vulnerabilities

Description Apple macOS is prone to multiple security vulnerabilities. Attackers can exploit these issues to execute arbitrary code, bypass security restrictions or obtain sensitive information. Technologies Affected Apple IMac Apple Mac Pro Apple MacBook Apple MacMini Apple Macbook Air Apple...

Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•72 views

Microsoft Windows CVE-2019-1336 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. A local attacker can leverage this issue to execute arbitrary code in the security context of the local system. Technologies Affected Microsoft Windows 10 Version 1809 for 32-bit Systems Microsoft Windows 10...

3.3AI score0.00902EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•31 views

Microsoft Edge Chakra Scripting Engine CVE-2019-1366 Remote Memory Corruption Vulnerability

Description Microsoft Edge is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft ChakraCore Microsoft...

0.6AI score0.09509EPSS
Exploits0
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•32 views

Siemens SIMATIC IT UADM CVE-2019-13929 Hardcoded Cryptographic Key Vulnerability

Description Siemens SIMATIC IT UADM is prone to a hard-coded cryptographic key vulnerability. An attacker can exploit this issue to gain unauthorized access to the vulnerable device and perform unauthorized actions. Versions prior to SIMATIC IT UADM 1.3 are vulnerable. Technologies Affected Sieme...

1.2AI score0.01273EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•36 views

Microsoft Windows Graphics Component CVE-2019-1361 Information Disclosure Vulnerability

Description Microsoft Windows is prone to a information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in launching further attacks. Technologies Affected Microsoft Windows 7 for 32-bit Systems SP1 Microsoft Windows 7 for x64-based Systems...

6.3AI score0.0645EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•55 views

Microsoft Windows Setup CVE-2019-1316 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to gain elevated privileges. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for x64-based Systems Microsoft Window...

1.8AI score0.00998EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•52 views

SAP NetWeaver Process Integration CVE-2019-0367 Remote Authorization Bypass Vulnerability

Description SAP NetWeaver Process Integration is prone to an authorization-bypass vulnerability. Attackers can exploit this issue to gain unauthorized access and obtain sensitive information. This may aid in further attacks. SAP NetWeaver Process Integration versions 1.0 and 2.0 are vulnerable...

1.4AI score0.0055EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•30 views

SAP Financial Consolidation Multiple Unspecified Security Vulnerabilities

Description SAP Financial Consolidation is prone to multiple unspecified security vulnerabilities. Limited information is currently available regarding these issues. We will update this BID as more information emerges. SAP Financial Consolidation versions 10.0 and 10.1 are vulnerable. Technologie...

1.3AI score
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•36 views

Microsoft Windows MS XML CVE-2019-1060 Remote Code Execution Vulnerability

Description Microsoft Windows MS XML is prone to a remote code-execution vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of the current user. Failed exploit attempts may result in a denial of service condition. Technologies Affected Microsoft Windows 10...

0.9AI score0.12906EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•64 views

Magento CMS CVE-2019-8144 Remote Code Execution Vulnerability

Description Magento CMS is prone to a remote code-execution vulnerability. Successfully exploiting this issue may allow an attacker to execute arbitrary code in the context of the affected application. Failed exploit attempts may cause a denial-of-service condition. Magento version 2.3 prior to...

7.5CVSS1.1AI score0.02474EPSS
Exploits0References2Affected Software1
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•829 views

Microsoft Windows IIS Server CVE-2019-1365 Remote Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a remote privilege-escalation vulnerability. Successful exploits will allow an attacker to execute arbitrary code on the target system. Failed attacks may cause denial of service conditions. Technologies Affected Microsoft Windows 10 Version 1607 for 32-b...

0.6AI score0.04064EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•31 views

Microsoft Windows Update Assistant CVE-2019-1378 Local Privilege Escalation Vulnerability

Description Microsoft Windows Update Assistant is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to gain elevated privileges on the system. Technologies Affected Microsoft Windows Update Assistant Recommendations Permit local access for trusted individuals...

3.3AI score0.01223EPSS
Exploits0
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•95 views

Microsoft Windows Kernel CVE-2019-1345 Local Information Disclosure Vulnerability

Description Microsoft Windows Kernel is prone to a local information-disclosure vulnerability. A local attacker can leverage this issue to obtain sensitive information that may aid in further attacks. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10...

1.8AI score0.02834EPSS
Exploits1Affected Software2
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•34 views

Microsoft Windows Secure Boot CVE-2019-1368 Local Security Bypass Vulnerability

Description Microsoft Windows is prone to a local security-bypass vulnerability. A local attacker can leverage this issue to bypass certain security restrictions and perform unauthorized actions. Technologies Affected Microsoft Windows 10 Version 1803 for 32-bit Systems Microsoft Windows 10 Versi...

1.4AI score0.01261EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•31 views

Microsoft SQL Server Management Studio CVE-2019-1376 Information Disclosure Vulnerability

Description Microsoft SQL Server Management Studio is prone to an information-disclosure vulnerability. An attacker can leverage this issue to obtain sensitive information that may aid in further attacks. Technologies Affected Microsoft SQL Server Management Studio 18.3.1 Recommendations Block...

6.4AI score0.05026EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•42 views

SAP Landscape Management CVE-2019-0380 Information Disclosure Vulnerability

Description SAP Landscape Management is prone to an unspecified information-disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may aid in launching further attacks. SAP Landscape Management 3.0 is vulnerable; other versions may also be affected...

0.6AI score0.00875EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•36 views

Intel Active System Console CVE-2019-11120 Local Privilege Escalation Vulnerability

Description Intel Active System Console is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to gain elevated privileges. Versions prior to Intel Active System Console 8.0 Build 24 are vulnerable. Technologies Affected Intel Active System Console 4.4 Int...

2.8AI score0.00337EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•47 views

Microsoft Windows 10 Mobile CVE-2019-1314 Local Security Bypass Vulnerability

Description Microsoft Windows 10 Mobile is prone to a local security-bypass vulnerability. A local attacker can leverage this issue to bypass certain security restrictions and perform unauthorized actions. Technologies Affected Microsoft Windows 10 Mobile Recommendations Permit local access for...

0.8AI score0.00864EPSS
Exploits0Affected Software1
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•74 views

Microsoft SharePoint Server CVE-2019-1328 Spoofing Vulnerability

Description Microsoft SharePoint Server is prone to a security vulnerability that may allow attackers to conduct spoofing attacks. An attacker can exploit this issue to conduct spoofing attacks and perform unauthorized actions; other attacks are also possible. Technologies Affected Microsoft...

0.1AI score0.01414EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•76 views

Microsoft Windows CVE-2019-1340 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to gain the elevated privileges on the affected system. Technologies Affected Microsoft Windows 10 Version 1709 for ARM64-based Systems Microsoft Windows 10 Version 1803 for...

2.3AI score0.01057EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•37 views

Microsoft Windows Update Client CVE-2019-1323 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to gain elevated privileges. Technologies Affected Microsoft Windows 10 Version 1809 for 32-bit Systems Microsoft Windows 10 Version 1809 for ARM64-based Systems Microsoft...

2.6AI score0.00914EPSS
Exploits0Affected Software2
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•38 views

McAfee Endpoint Security CVE-2019-3653 Unauthorized Access Vulnerability

Description McAfee Endpoint Security is prone to an unauthorized-access vulnerability. Attackers can exploit this issue to gain unauthorized access and perform unauthorized actions. This may aid in further attacks. McAfee Endpoint Security ENS versions prior to 10.6.1 October 2019 Update are...

2.1CVSS2.5AI score0.00231EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•67 views

Microsoft Edge Chakra Scripting Engine CVE-2019-1307 Remote Memory Corruption Vulnerability

Description Microsoft Edge is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft ChakraCore Microsoft...

0.6AI score0.09703EPSS
Exploits0
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•81 views

Microsoft Windows CVE-2019-1346 Denial of Service Vulnerability

Description Microsoft Windows is prone to a denial of service vulnerability. An attacker can exploit this issue to cause a denial-of-service condition. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for x64-based Systems Microsoft...

1.2AI score0.10221EPSS
Exploits1Affected Software3
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•37 views

Intel Smart Connect Technology CVE-2019-11167 Local Privilege Escalation Vulnerability

Description Intel Smart Connect Technology is prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to gain elevated privileges. Intel Smart Connect Technology for Intel NUC products is vulnerable. Technologies Affected Intel Smart Connect Technology...

2.1AI score0.00294EPSS
Exploits0References1
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•44 views

Microsoft Edge Chakra Scripting Engine CVE-2019-1308 Remote Memory Corruption Vulnerability

Description Microsoft Edge is prone to a remote memory-corruption vulnerability. Attackers can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed attacks will cause denial of service conditions. Technologies Affected Microsoft ChakraCore Microsoft...

0.6AI score0.09703EPSS
Exploits0
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•91 views

Microsoft Internet Explorer and Edge CVE-2019-0608 Spoofing Vulnerability

Description Microsoft Internet Explorer and Edge are prone to a security vulnerability that may allow attackers to conduct spoofing attacks. An attacker can exploit this issue to conduct spoofing attacks and perform unauthorized actions; other attacks are also possible. Technologies Affected...

7AI score0.02134EPSS
Exploits0References1Affected Software1
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•63 views

Multiple SAP Products CVE-2019-0381 DLL Loading Local Privilege Escalation Vulnerability

Description Multiple SAP Products are prone to a local privilege-escalation vulnerability. A local attacker can exploit this issue to gain elevated privileges. The following SAP products are affected: SAP IQ version 16.1 is vulnerable SAP SQL Anywhere version 17.0 is vulnerable SAP Dynamic Tierin...

2.4AI score0.00309EPSS
Exploits0References2Affected Software3
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•89 views

Microsoft Windows CVE-2019-1341 Local Privilege Escalation Vulnerability

Description Microsoft Windows is prone to a local privilege-escalation vulnerability. An attacker can exploit this issue to gain the elevated privileges on the affected system. Technologies Affected Microsoft Windows 10 Version 1607 for 32-bit Systems Microsoft Windows 10 Version 1607 for x64-bas...

1.6AI score0.01021EPSS
Exploits0Affected Software3
Symantec
Symantec
•added 2019/10/08 12:0 a.m.•34 views

Microsoft SQL Server Management Studio CVE-2019-1313 Information Disclosure Vulnerability

Description Microsoft SQL Server Management Studio is prone to an information-disclosure vulnerability. An attacker can leverage this issue to obtain sensitive information that may aid in further attacks. Technologies Affected Microsoft SQL Server Management Studio 18.3 Microsoft SQL Server...

6.4AI score0.0496EPSS
Exploits0Affected Software1
Total number of security vulnerabilities6867