4 matches found
CVE-2020-12593
CVE-2020-12593 affects Symantec Endpoint Detection & Response (SEDR) on-premises prior to version 4.5, with an information disclosure vulnerability (unauthorized data access). The issue is documented in multiple feeds; CVSS suggests MEDIUM to HIGH impact (NVD: CVSS v3.1 base 7.5). A remediation i...
CVE-2022-37015
Symantec Endpoint Detection and Response (SEDR) Appliance is affected prior to version 4.7.0 by a privilege-escalation vulnerability. The Red Hat advisory and other sources confirm that an attacker could gain elevated access within the provided appliance. The practical impact is elevation of priv...
CVE-2019-19547
CVE-2019-19547 relates to Symantec Endpoint Detection and Response (SEDR) before version 4.3.0, where the web UI is susceptible to a cross-site scripting (XSS) vulnerability. The XSS could allow an attacker to inject client-side scripts into pages viewed by other users, potentially bypassing cert...
CVE-2020-5839
CVE-2020-5839 affects Broadcom Symantec Endpoint Detection and Response (SEDR) prior to version 4.4, with an information disclosure vulnerability disclosed by multiple sources. The root cause is an information disclosure in SEDR that could allow unauthorized access to data. Remediation is to upgr...