Endpoint Protection Manager@12.1 Security Vulnerabilities and Issues — Endpoint Protection Manager@12.1 CVE List

Lucene search

SymantecEndpoint Protection Manager12.1

3 matches found

CVE•added 2016/03/18 2:59 p.m.•47 views

CVE-2015-8154

The SysPlant.sys driver in the Application and Device Control (ADC) component in the client in Symantec Endpoint Protection (SEP) 12.1 before RU6-MP4 allows remote attackers to execute arbitrary code via a crafted HTML document, related to "RWX Permissions."

9.3CVSS8.7AI score0.0168EPSS

CVE•added 2016/03/18 2:59 p.m.•45 views

CVE-2015-8153

SQL injection vulnerability in Symantec Endpoint Protection Manager (SEPM) 12.1 before RU6-MP4 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.

8.8CVSS8.6AI score0.0087EPSS

CVE•added 2016/03/18 2:59 p.m.•39 views

CVE-2015-8152

Cross-site request forgery (CSRF) vulnerability in Symantec Endpoint Protection Manager (SEPM) 12.1 before RU6-MP4 allows remote authenticated users to hijack the authentication of administrators for requests that execute arbitrary code by adding lines to a logging script.

8.5CVSS8.5AI score0.00794EPSS