Encryption Management Server@3.3.2 Security Vulnerabilities and Issues — Encryption Management Server@3.3.2 CVE List

Lucene search

SymantecEncryption Management Server3.3.2

6 matches found

CVE•added 2016/02/18 10:59 p.m.•43 views

CVE-2015-8148

The LDAP service in Symantec Encryption Management Server (SEMS) 3.3.2 before MP12 allows remote attackers to obtain sensitive information about administrator accounts via a modified request.

7.5CVSS7.9AI score0.00443EPSS

CVE•added 2016/02/18 10:59 p.m.•43 views

CVE-2015-8149

The LDAP service in Symantec Encryption Management Server (SEMS) 3.3.2 before MP12 allows remote attackers to cause a denial of service (heap memory corruption and service outage) via crafted requests.

7.5CVSS8.3AI score0.01164EPSS

CVE•added 2015/02/01 2:59 a.m.•42 views

CVE-2014-7288

Symantec PGP Universal Server and Encryption Management Server before 3.3.2 MP7 allow remote authenticated administrators to execute arbitrary shell commands via a crafted command line in a database-backup restore action.

9CVSS7.4AI score0.10357EPSS

Web

CVE•added 2016/02/18 10:59 p.m.•42 views

CVE-2015-8151

Symantec Encryption Management Server (SEMS) 3.3.2 before MP12 allows remote authenticated users to execute arbitrary OS commands by leveraging console administrator access.

9.1CVSS9.2AI score0.01634EPSS

CVE•added 2016/02/18 10:59 p.m.•39 views

CVE-2015-8150

Symantec Encryption Management Server (SEMS) 3.3.2 before MP12 allows local users to obtain root access by modifying a batch file.

7.8CVSS8.1AI score0.00176EPSS

CVE•added 2015/02/01 2:59 a.m.•37 views

CVE-2014-7287

The key-management component in Symantec PGP Universal Server and Encryption Management Server before 3.3.2 MP7 allows remote attackers to trigger unintended content in outbound e-mail messages via a crafted key UID value in an inbound e-mail message, as demonstrated by the outbound Subject header.

5CVSS6.7AI score0.00513EPSS