CVSS: 3.3EPSS: 0%CPEs: 6EXPL: 0CVE-2020-5827 – Symantec Endpoint Protection Manager secars Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2020-5827
11 Feb 2020 — Symantec Endpoint Protection Manager (SEPM), prior to 14.2 RU2 MP1, may be susceptible to an out of bounds vulnerability, which is a type of issue that results in an existing application reading memory outside of the bounds of the memory that had been allocated to the program. Symantec Endpoint Protection Manager (SEPM), versiones anteriores a 14.2 RU2 MP1, puede ser susceptible a una vulnerabilidad fuera de límites, que es un tipo de problema que resulta en que una aplicación existente lea la memoria fuera... • https://support.symantec.com/us/en/article.SYMSA1505.html • CWE-125: Out-of-bounds Read •
CVSS: 5.5EPSS: 0%CPEs: 77EXPL: 0CVE-2020-5824 – Symantec Endpoint Protection AvHostPlugin Missing Authentication Denial-of-Service Vulnerability
https://notcve.org/view.php?id=CVE-2020-5824
11 Feb 2020 — Symantec Endpoint Protection (SEP) and Symantec Endpoint Protection Small Business Edition (SEP SBE), prior to 14.2 RU2 MP1 and prior to 14.2.5569.2100 respectively, may be susceptible to a denial of service vulnerability, which is a type of issue whereby a threat actor attempts to tie up the resources of a resident application, thereby making certain functions unavailable. Symantec Endpoint Protection (SEP) y Symantec Endpoint Protection Small Business Edition (SEP SBE), versiones anteriores a 14.2 RU2 MP1... • https://support.symantec.com/us/en/article.SYMSA1505.html •
CVSS: 3.3EPSS: 0%CPEs: 6EXPL: 0CVE-2020-5831 – Symantec Endpoint Protection Manager secars Out-Of-Bounds Read Information Disclosure Vulnerability
https://notcve.org/view.php?id=CVE-2020-5831
11 Feb 2020 — Symantec Endpoint Protection Manager (SEPM), prior to 14.2 RU2 MP1, may be susceptible to an out of bounds vulnerability, which is a type of issue that results in an existing application reading memory outside of the bounds of the memory that had been allocated to the program. Symantec Endpoint Protection Manager (SEPM), versiones anteriores a 14.2 RU2 MP1, puede ser susceptible a una vulnerabilidad fuera de límites, que es un tipo de problema que resulta en que una aplicación existente lea la memoria fuera... • https://support.symantec.com/us/en/article.SYMSA1505.html • CWE-125: Out-of-bounds Read •
CVSS: 7.8EPSS: 0%CPEs: 77EXPL: 0CVE-2020-5820 – Symantec Endpoint Protection AvHostPlugin Out-Of-Bounds Write Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2020-5820
11 Feb 2020 — Symantec Endpoint Protection (SEP) and Symantec Endpoint Protection Small Business Edition (SEP SBE), prior to 14.2 RU2 MP1 and prior to 14.2.5569.2100 respectively, may be susceptible to a privilege escalation vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated access to resources that are normally protected from an application or user. Symantec Endpoint Protection (SEP) y Symantec Endpoint Protection Small Business Edition (SEP SB... • https://support.symantec.com/us/en/article.SYMSA1505.html •
CVSS: 7.1EPSS: 0%CPEs: 77EXPL: 0CVE-2020-5825 – Symantec Endpoint Protection AvHostPlugin Missing Authentication Arbitrary File Move Vulnerability
https://notcve.org/view.php?id=CVE-2020-5825
11 Feb 2020 — Symantec Endpoint Protection (SEP) and Symantec Endpoint Protection Small Business Edition (SEP SBE), prior to 14.2 RU2 MP1 and prior to 14.2.5569.2100 respectively, may be susceptible to an arbitrary file write vulnerability, which is a type of issue whereby an attacker is able to overwrite existing files on the resident system without proper privileges. Symantec Endpoint Protection (SEP) y Symantec Endpoint Protection Small Business Edition (SEP SBE), versiones anteriores a 14.2 RU2 MP1 y versiones anteri... • https://support.symantec.com/us/en/article.SYMSA1505.html •
CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 0CVE-2016-5311
https://notcve.org/view.php?id=CVE-2016-5311
09 Jan 2020 — A Privilege Escalation vulnerability exists in Symantec Norton Antivirus, Norton AntiVirus with Backup, Norton Security, Norton Security with Backup, Norton Internet Security, Norton 360, Endpoint Protection Small Business Edition Cloud, and Endpoint Protection Cloud Client due to a DLL-preloading without path restrictions, which could let a local malicious user obtain system privileges. Se presenta una vulnerabilidad de escalada de privilegios en Symantec Norton Antivirus, Norton AntiVirus with Backup, Nor... • http://www.securityfocus.com/bid/94295 • CWE-427: Uncontrolled Search Path Element •
CVSS: 7.2EPSS: 0%CPEs: 2EXPL: 1CVE-2019-12758
https://notcve.org/view.php?id=CVE-2019-12758
15 Nov 2019 — Symantec Endpoint Protection, prior to 14.2 RU2, may be susceptible to an unsigned code execution vulnerability, which may allow an individual to execute code without a resident proper digital signature. Symantec Endpoint Protection, versiones anteriores a la versión 14.2 RU2, puede ser susceptible a una vulnerabilidad de ejecución de código sin firmar, lo que puede permitir a un individuo ejecutar código sin una firma digital apropiada residente. • https://safebreach.com/Post/Symantec-Endpoint-Protection-Self-Defense-Bypass-and-Potential-Usages-CVE-2019-12758 • CWE-427: Uncontrolled Search Path Element •
CVSS: 7.8EPSS: 0%CPEs: 76EXPL: 0CVE-2019-12757
https://notcve.org/view.php?id=CVE-2019-12757
15 Nov 2019 — Symantec Endpoint Protection (SEP), prior to 14.2 RU2 & 12.1 RU6 MP10 and Symantec Endpoint Protection Small Business Edition (SEP SBE) prior to 12.1 RU6 MP10d (12.1.7510.7002), may be susceptible to a privilege escalation vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated access to resources that are normally protected from an application or user. Symantec Endpoint Protection (SEP), versiones anteriores a la versión 14.2 RU2 y 12.... • https://support.symantec.com/us/en/article.SYMSA1488.html •
CVSS: 2.3EPSS: 0%CPEs: 50EXPL: 0CVE-2019-12756
https://notcve.org/view.php?id=CVE-2019-12756
15 Nov 2019 — Symantec Endpoint Protection (SEP), prior to 14.2 RU2 may be susceptible to a password protection bypass vulnerability whereby the secondary layer of password protection could by bypassed for individuals with local administrator rights. Symantec Endpoint Protection (SEP), versiones anteriores a la versión 14.2 RU2, puede ser susceptible a una vulnerabilidad de omisión de protección de contraseña por la cual la capa secundaria de protección de contraseña podría ser omitida para individuos con derechos de adm... • https://support.symantec.com/us/en/article.SYMSA1488.html •
CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0CVE-2019-12759 – Symantec Endpoint Protection Manager LuComServer stDisScriptEngine Privilege Escalation Vulnerability
https://notcve.org/view.php?id=CVE-2019-12759
14 Nov 2019 — Symantec Endpoint Protection Manager (SEPM) and Symantec Mail Security for MS Exchange (SMSMSE), prior to versions 14.2 RU2 and 7.5.x respectively, may be susceptible to a privilege escalation vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated access to resources that are normally protected from an application or user. Symantec Endpoint Protection Manager (SEPM) y Symantec Mail Security for MS Exchange (SMSMSE), versiones anteriore... • https://support.symantec.com/us/en/article.SYMSA1488.html •