CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2022-4294 – Norton, Avira, Avast and AVG Antivirus for Windows Privilege Escalation
https://notcve.org/view.php?id=CVE-2022-4294
10 Jan 2023 — Norton, Avira, Avast and AVG Antivirus for Windows may be susceptible to a Privilege Escalation vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated access to resources that are normally protected from an application or user. • https://support.norton.com/sp/static/external/tools/security-advisories.html • CWE-269: Improper Privilege Management •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2019-19548
https://notcve.org/view.php?id=CVE-2019-19548
14 Jan 2020 — Norton Power Eraser, prior to 5.3.0.67, may be susceptible to a privilege escalation vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated access to resources that are normally protected from an application or user. Norton Power Eraser, versiones anteriores a 5.3.0.67, puede ser susceptible a una vulnerabilidad de escalada de privilegios, que es un tipo de problema mediante el cual un atacante puede intentar comprometer la aplicación ... • https://support.symantec.com/us/en/article.SYMSA1503.html •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2019-19546
https://notcve.org/view.php?id=CVE-2019-19546
05 Dec 2019 — Norton Password Manager, prior to 6.6.2.5, may be susceptible to an information disclosure issue, which is a type of vulnerability whereby there is an unintentional disclosure of information to an actor that is not explicitly authorized to have access to that information. Norton Password Manager, versiones anteriores a 6.6.2.5, puede ser susceptible a un problema de divulgación de información, que es un tipo de vulnerabilidad mediante la cual se presenta una divulgación involuntaria de información a un acto... • https://support.symantec.com/us/en/article.SYMSA1499.html •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2019-19545
https://notcve.org/view.php?id=CVE-2019-19545
05 Dec 2019 — Norton Password Manager, prior to 6.6.2.5, may be susceptible to a cross origin resource sharing (CORS) vulnerability, which is a type of issue that allows restricted resources on a web page to be requested from another domain outside the domain from which the first resource was served. Norton Password Manager, versiones anteriores a 6.6.2.5, puede ser susceptible a una vulnerabilidad de intercambio de recursos de origen cruzado (CORS), que es un tipo de problema que permite a recursos restringidos sobre un... • https://support.symantec.com/us/en/article.SYMSA1499.html • CWE-346: Origin Validation Error •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2019-18381
https://notcve.org/view.php?id=CVE-2019-18381
05 Dec 2019 — Norton Password Manager, prior to 6.6.2.5, may be susceptible to a cross origin resource sharing (CORS) vulnerability, which is a type of issue that allows restricted resources on a web page to be requested from another domain outside the domain from which the first resource was served. Norton Password Manager, versiones anteriores a 6.6.2.5, puede ser susceptible a una vulnerabilidad de intercambio de recursos de origen cruzado (CORS), que es un tipo de problema que permite a recursos restringidos sobre un... • https://support.symantec.com/us/en/article.SYMSA1499.html • CWE-346: Origin Validation Error •
CVSS: 3.9EPSS: 0%CPEs: 2EXPL: 0CVE-2019-9700
https://notcve.org/view.php?id=CVE-2019-9700
16 Jul 2019 — Norton Password Manager, prior to 6.3.0.2082, may be susceptible to an address spoofing issue. This type of issue may allow an attacker to disguise their origin IP address in order to obfuscate the source of network traffic. Norton Password Manager, anterior a versión 6.3.0.2082, puede ser susceptible a un problema de suplantación de direcciones. Este clase de problema puede permitir a un atacante disfrazar su dirección IP de origen para ofuscar la fuente del tráfico de la red. • https://support.symantec.com/us/en/article.SYMSA1483.html •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2017-15528 – Norton Security for Mac Man-In-The-Middle
https://notcve.org/view.php?id=CVE-2017-15528
22 Nov 2017 — Prior to v 7.6, the Install Norton Security (INS) product can be susceptible to a certificate spoofing vulnerability, which is a type of attack whereby a maliciously procured certificate binds the public key of an attacker to the domain name of the target. Antes de la versión 7.6, el producto Install Norton Security (INS) puede ser susceptible a una vulnerabilidad de suplantación de certificados. En este ataque, un certificado adquirido de manera maliciosa enlaza la clave pública de un atacante al nombre de... • http://www.securityfocus.com/bid/101796 • CWE-295: Improper Certificate Validation •
CVSS: 7.0EPSS: 0%CPEs: 1EXPL: 0CVE-2017-13676
https://notcve.org/view.php?id=CVE-2017-13676
27 Sep 2017 — Norton Remove & Reinstall can be susceptible to a DLL preloading vulnerability. These types of issues occur when an application looks to call a DLL for execution and an attacker provides a malicious DLL to use instead. Depending on how the application is configured, it will generally follow a specific search path to locate the DLL. The vulnerability can be exploited by a simple file write (or potentially an over-write) which results in a foreign DLL running under the context of the application. A Norton Rem... • http://www.securityfocus.com/bid/100939 • CWE-94: Improper Control of Generation of Code ('Code Injection') •