Symantec : Security Vulnerabilities, CVEs, (Information Leak) CVSS score >= 8
Symantec Endpoint Protection Manager (SEPM) 12.1 before RU6 MP5 allows remote authenticated users to discover the PHP JSESSIONID value via unspecified vectors.
Max CVSS
8.0
EPSS Score
0.21%
Published
2016-06-30
Updated
2017-09-01
Symantec Endpoint Protection Manager (SEPM) 12.1 before RU6 MP5 allows remote authenticated users to discover credentials via a brute-force attack.
Max CVSS
8.8
EPSS Score
0.24%
Published
2016-06-30
Updated
2017-09-01
Symantec Endpoint Protection Manager (SEPM) 12.1 before RU6 MP5 allows remote authenticated users to bypass the Authentication Lock protection mechanism, and conduct brute-force password-guessing attacks against management-console accounts, by entering data into the authorization window.
Max CVSS
8.8
EPSS Score
0.23%
Published
2016-06-30
Updated
2017-09-01
3 vulnerabilities found