Symantec : Security Vulnerabilities, CVEs, Published In 2011 (CSRF) CVSS score >= 2
Cross-site request forgery (CSRF) vulnerability in the Web Interface in the Endpoint Protection Manager in Symantec Endpoint Protection (SEP) 11.0.600x through 11.0.6300 allows remote attackers to hijack the authentication of administrators for requests that create administrative accounts.
Max CVSS
6.8
EPSS Score
0.32%
Published
2011-08-15
Updated
2013-02-07
Cross-site request forgery (CSRF) vulnerability in adduser.do in Symantec LiveUpdate Administrator (LUA) before 2.3 allows remote attackers to hijack the authentication of administrators for requests that create new administrative accounts, and possibly have unspecified other impact, via the userRole parameter.
Max CVSS
6.8
EPSS Score
1.04%
Published
2011-03-28
Updated
2018-10-09
2 vulnerabilities found