Security Information Manager Appliance Security Vulnerabilities and Issues — Security Information Manager Appliance CVE List

Lucene search

SymantecSecurity Information Manager Appliance

3 matches found

CVE•added 2013/07/08 5:55 p.m.•41 views

CVE-2013-1613

SQL injection vulnerability in the management console (aka Java console) on the Symantec Security Information Manager (SSIM) appliance 4.7.x and 4.8.x before 4.8.1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.

4.7CVSS8.2AI score0.00516EPSS

CVE•added 2013/07/08 5:55 p.m.•41 views

CVE-2013-1615

The management console (aka Java console) on the Symantec Security Information Manager (SSIM) appliance 4.7.x and 4.8.x before 4.8.1 allows remote attackers to obtain sensitive information via unspecified web-GUI API calls.

2.9CVSS6.4AI score0.00114EPSS

CVE•added 2013/07/08 5:55 p.m.•32 views

CVE-2013-1614

Multiple cross-site scripting (XSS) vulnerabilities in the management console (aka Java console) on the Symantec Security Information Manager (SSIM) appliance 4.7.x and 4.8.x before 4.8.1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

4.3CVSS5.9AI score0.00349EPSS