| # |
CVE ID
|
CWE ID
|
# of Exploits
|
Vulnerability Type(s)
|
Publish Date
|
Update Date
|
Score
|
Gained Access Level
|
Access
|
Complexity
|
Authentication
|
Conf.
|
Integ.
|
Avail.
|
|
1 |
CVE-2020-5833 |
125 |
|
|
2020-05-11 |
2020-05-14 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
Symantec Endpoint Protection Manager, prior to 14.3, may be susceptible to an out of bounds vulnerability, which is a type of issue that results in an existing application reading memory outside of the bounds of the memory that had been allocated to the program. |
|
2 |
CVE-2020-5831 |
125 |
|
|
2020-02-11 |
2020-02-13 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
Symantec Endpoint Protection Manager (SEPM), prior to 14.2 RU2 MP1, may be susceptible to an out of bounds vulnerability, which is a type of issue that results in an existing application reading memory outside of the bounds of the memory that had been allocated to the program. |
|
3 |
CVE-2020-5830 |
125 |
|
|
2020-02-11 |
2020-02-13 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
Symantec Endpoint Protection Manager (SEPM), prior to 14.2 RU2 MP1, may be susceptible to an out of bounds vulnerability, which is a type of issue that results in an existing application reading memory outside of the bounds of the memory that had been allocated to the program. |
|
4 |
CVE-2020-5829 |
125 |
|
|
2020-02-11 |
2020-02-13 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
Symantec Endpoint Protection Manager (SEPM), prior to 14.2 RU2 MP1, may be susceptible to an out of bounds vulnerability, which is a type of issue that results in an existing application reading memory outside of the bounds of the memory that had been allocated to the program. |
|
5 |
CVE-2020-5828 |
125 |
|
|
2020-02-11 |
2020-02-13 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
Symantec Endpoint Protection Manager (SEPM), prior to 14.2 RU2 MP1, may be susceptible to an out of bounds vulnerability, which is a type of issue that results in an existing application reading memory outside of the bounds of the memory that had been allocated to the program. |
|
6 |
CVE-2020-5827 |
125 |
|
|
2020-02-11 |
2020-02-13 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
Symantec Endpoint Protection Manager (SEPM), prior to 14.2 RU2 MP1, may be susceptible to an out of bounds vulnerability, which is a type of issue that results in an existing application reading memory outside of the bounds of the memory that had been allocated to the program. |
|
7 |
CVE-2020-5826 |
119 |
|
Overflow |
2020-02-11 |
2021-07-21 |
2.1 |
None |
Local |
Low |
Not required |
None |
None |
Partial |
|
Symantec Endpoint Protection (SEP) and Symantec Endpoint Protection Small Business Edition (SEP SBE), prior to 14.2 RU2 MP1 and prior to 14.2.5569.2100 respectively, may be susceptible to an out of bounds vulnerability, which is a type of issue that results in an existing application reading memory outside of the bounds of the memory that had been allocated to the program. |
|
8 |
CVE-2020-5824 |
|
|
DoS |
2020-02-11 |
2020-02-14 |
2.1 |
None |
Local |
Low |
Not required |
None |
None |
Partial |
|
Symantec Endpoint Protection (SEP) and Symantec Endpoint Protection Small Business Edition (SEP SBE), prior to 14.2 RU2 MP1 and prior to 14.2.5569.2100 respectively, may be susceptible to a denial of service vulnerability, which is a type of issue whereby a threat actor attempts to tie up the resources of a resident application, thereby making certain functions unavailable. |
|
9 |
CVE-2019-12756 |
|
|
Bypass |
2019-11-15 |
2020-08-24 |
2.1 |
None |
Local |
Low |
Not required |
None |
Partial |
None |
|
Symantec Endpoint Protection (SEP), prior to 14.2 RU2 may be susceptible to a password protection bypass vulnerability whereby the secondary layer of password protection could by bypassed for individuals with local administrator rights. |
|
10 |
CVE-2019-12755 |
200 |
|
+Info |
2019-09-17 |
2021-07-21 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
Norton Password Manager, prior to 6.5.0.2104, may be susceptible to an information disclosure issue, which is a type of vulnerability whereby there is an unintentional disclosure of information to an actor that is not explicitly authorized to have access to that information. |
|
11 |
CVE-2019-9699 |
200 |
|
+Info |
2019-10-24 |
2021-07-21 |
2.7 |
None |
Local Network |
Low |
??? |
Partial |
None |
None |
|
Symantec Messaging Gateway (prior to 10.7.0), may be susceptible to an information disclosure issue, which is a type of vulnerability that could potentially allow unauthorized access to data. |
|
12 |
CVE-2018-18366 |
908 |
|
|
2019-04-25 |
2020-08-24 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
Symantec Norton Security prior to 22.16.3, SEP (Windows client) prior to and including 12.1 RU6 MP9, and prior to 14.2 RU1, SEP SBE prior to Cloud Agent 3.00.31.2817, NIS-22.15.2.22, SEP-12.1.7484.7002 and SEP Cloud prior to 22.16.3 may be susceptible to a kernel memory disclosure, which is a type of issue where a specially crafted IRP request can cause the driver to return uninitialized memory. |
|
13 |
CVE-2017-15530 |
200 |
|
+Info |
2017-12-13 |
2017-12-27 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
Prior to 4.4.1.10, the Norton Family Android App can be susceptible to an Information Disclosure issue. Information disclosure is a very common issue that attackers will attempt to exploit as a first pass across the application. As they probe the application they will take note of anything that may seem out of place or any bit of information they can use to their advantage such as error messages, system information, user data, version numbers, component names, URL paths, or even simple typos and misspellings. |
|
14 |
CVE-2017-15529 |
400 |
|
DoS |
2017-12-13 |
2017-12-27 |
2.1 |
None |
Local |
Low |
Not required |
None |
None |
Partial |
|
Prior to 4.4.1.10, the Norton Family Android App can be susceptible to a Denial of Service (DoS) exploit. A DoS attack is a type of attack whereby the perpetrator attempts to make a particular device unavailable to its intended user by temporarily or indefinitely disrupting services of a specific host within a network. |
|
15 |
CVE-2017-13683 |
772 |
|
|
2017-10-23 |
2019-10-03 |
2.3 |
None |
Local Network |
Medium |
??? |
None |
None |
Partial |
|
In Symantec Endpoint Encryption before SEE 11.1.3HF3, a kernel memory leak is a type of resource leak that can occur when a computer program incorrectly manages memory allocations in such a way that memory which is no longer needed is not released. In object-oriented programming, a memory leak may happen when an object is stored in memory but cannot be accessed by the running code. |
|
16 |
CVE-2017-13682 |
772 |
|
|
2017-10-23 |
2019-10-03 |
2.3 |
None |
Local Network |
Medium |
??? |
None |
None |
Partial |
|
In Symantec Encryption Desktop before SED 10.4.1 MP2HF1, a kernel memory leak is a type of resource leak that can occur when a computer program incorrectly manages memory allocations in such a way that memory which is no longer needed is not released. In object-oriented programming, a memory leak may happen when an object is stored in memory but cannot be accessed by the running code. |
|
17 |
CVE-2017-13675 |
|
|
DoS |
2017-10-10 |
2019-10-03 |
2.3 |
None |
Local Network |
Medium |
??? |
None |
None |
Partial |
|
A denial of service (DoS) attack in Symantec Endpoint Encryption before SEE 11.1.3HF2 allows remote attackers to make a particular machine or network resource unavailable to its intended users by temporarily or indefinitely disrupting services of a specific host within a network. |
|
18 |
CVE-2016-6587 |
200 |
|
+Info |
2020-01-08 |
2020-01-13 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
An Information Disclosure vulnerability exists in the mid.dat file stored on the SD card in Symantec Norton Mobile Security for Android before 3.16, which could let a local malicious user obtain sensitive information. |
|
19 |
CVE-2016-2203 |
255 |
|
|
2016-04-22 |
2019-06-25 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
The management console on Symantec Messaging Gateway (SMG) Appliance devices before 10.6.1 allows local users to discover an encrypted AD password by leveraging certain read privileges. |
|
20 |
CVE-2016-2202 |
264 |
|
Bypass |
2016-04-20 |
2016-04-28 |
2.1 |
None |
Local |
Low |
Not required |
None |
Partial |
None |
|
The Inventory Solution component in the Management Agent in the client in Symantec Altiris IT Management Suite (ITMS) through 7.6 HF7 allows local users to bypass intended application-blacklist restrictions via unspecified vectors. |
|
21 |
CVE-2015-6556 |
200 |
|
+Info |
2015-12-18 |
2015-12-18 |
2.3 |
None |
Local Network |
Medium |
??? |
Partial |
None |
None |
|
EACommunicatorSrv.exe in the Framework Service in the client in Symantec Endpoint Encryption (SEE) before 11.1.0 allows remote authenticated users to discover credentials by triggering a memory dump. |
|
22 |
CVE-2014-1652 |
79 |
|
XSS |
2014-06-18 |
2017-12-28 |
2.3 |
None |
Local Network |
Medium |
??? |
None |
Partial |
None |
|
Multiple cross-site scripting (XSS) vulnerabilities in the management console in Symantec Web Gateway (SWG) before 5.2 allow remote authenticated users to inject arbitrary web script or HTML via unspecified report parameters. |
|
23 |
CVE-2014-1647 |
119 |
|
DoS Overflow |
2014-04-23 |
2014-04-24 |
2.6 |
None |
Remote |
High |
Not required |
None |
None |
Partial |
|
Symantec PGP Desktop 10.0.x through 10.2.x and Encryption Desktop Professional 10.3.x before 10.3.2 MP1 do not properly perform block-data moves, which allows remote attackers to cause a denial of service (read access violation and application crash) via a malformed certificate. |
|
24 |
CVE-2014-1646 |
119 |
|
DoS Overflow |
2014-04-23 |
2014-04-24 |
2.6 |
None |
Remote |
High |
Not required |
None |
None |
Partial |
|
Symantec PGP Desktop 10.0.x through 10.2.x and Encryption Desktop Professional 10.3.x before 10.3.2 MP1 do not properly perform memory copies, which allows remote attackers to cause a denial of service (read access violation and application crash) via a malformed certificate. |
|
25 |
CVE-2013-4678 |
200 |
|
+Info |
2013-08-05 |
2013-08-09 |
2.7 |
None |
Local Network |
Low |
??? |
Partial |
None |
None |
|
The NDMP protocol implementation in Symantec Backup Exec 2010 R3 before 2010 R3 SP3 and 2012 before SP2 allows remote authenticated users to obtain sensitive host-version information via unspecified vectors. |
|
26 |
CVE-2013-1615 |
200 |
|
+Info |
2013-07-08 |
2013-07-08 |
2.9 |
None |
Local Network |
Medium |
Not required |
Partial |
None |
None |
|
The management console (aka Java console) on the Symantec Security Information Manager (SSIM) appliance 4.7.x and 4.8.x before 4.8.1 allows remote attackers to obtain sensitive information via unspecified web-GUI API calls. |
|
27 |
CVE-2012-3582 |
264 |
|
|
2012-09-04 |
2013-02-14 |
2.9 |
None |
Local Network |
Medium |
Not required |
Partial |
None |
None |
|
Symantec PGP Universal Server 3.2.x before 3.2.1 MP2 does not properly manage sessions that include key search requests, which might allow remote attackers to read a private key in opportunistic circumstances by making a request near the end of a user's session. |
|
28 |
CVE-2006-5404 |
|
|
+Info |
2006-10-19 |
2017-07-20 |
2.6 |
None |
Remote |
High |
Not required |
Partial |
None |
None |
|
Unspecified vulnerability in an ActiveX control used in Symantec Automated Support Assistant, as used in Norton AntiVirus, Internet Security, and System Works 2005 and 2006, allows user-assisted remote attackers to obtain sensitive information via unspecified vectors. |
|
29 |
CVE-2006-3785 |
|
|
|
2006-07-24 |
2018-10-17 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
Symantec pcAnywhere 12.5 obfuscates the passwords in a GUI textbox with asterisks but does not encrypt them in the associated .cif (aka caller or CallerID) file, which allows local users to obtain the passwords from the window using tools such as Nirsoft Asterwin. |
|
30 |
CVE-2006-3725 |
|
|
DoS |
2006-07-21 |
2018-10-17 |
2.1 |
None |
Local |
Low |
Not required |
None |
None |
Partial |
|
Norton Personal Firewall 2006 9.1.0.33 allows local users to cause a denial of service (crash) via certain RegSaveKey, RegRestoreKey and RegDeleteKey operations on the (1) HKLM\SYSTEM\CurrentControlSet\Services\SNDSrvc and (2) HKLM\SYSTEM\CurrentControlSet\Services\SymEvent registry keys. |
|
31 |
CVE-2006-3457 |
|
|
|
2006-08-05 |
2018-10-18 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
Symantec On-Demand Agent (SODA) before 2.5 MR2 Build 2157, and the Virtual Desktop module in Symantec On-Demand Protection (SODP) before 2.6 Build 2233, do not properly encrypt files that are subject to policy-based automatic encryption, which might allow local users to read sensitive data via an unspecified decryption method. |
|
32 |
CVE-2006-1286 |
|
|
Overflow |
2006-03-19 |
2017-07-20 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
Buffer overflow in the login dialog in dbisqlc.exe in SQLAnywhere for Symantec Ghost 8.0 and 8.2, as used in Symantec Ghost Solutions Suite (SGSS) 1.0, might allow local users to read certain sensitive information from the database. |
|
33 |
CVE-2005-2766 |
|
|
+Info |
2005-09-02 |
2016-10-18 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
Symantec AntiVirus Corporate Edition 9.0.1.x and 9.0.4.x, and possibly other versions, when obtaining updates from an internal LiveUpdate server, stores sensitive information in cleartext in the Log.Liveupdate log file, which allows attackers to obtain the username and password to the internal LiveUpdate server. |
|
34 |
CVE-2005-1346 |
|
|
DoS |
2005-05-02 |
2008-09-05 |
2.6 |
None |
Remote |
High |
Not required |
None |
None |
Partial |
|
Multiple Symantec AntiVirus products, including Norton AntiVirus 2005 11.0.0, Web Security Web Security 3.0.1.72, Mail Security for SMTP 4.0.5.66, AntiVirus Scan Engine 4.3.7.27, SAV/Filter for Domino NT 3.1.1.87, and Mail Security for Exchange 4.5.4.743, when running on Windows, allows remote attackers to cause a denial of service (component crash) and avoid detection via a crafted RAR file. |
|
35 |
CVE-2005-0923 |
|
|
DoS |
2005-05-02 |
2008-09-05 |
2.1 |
None |
Local |
Low |
Not required |
None |
None |
Partial |
|
The SmartScan feature in the Auto-Protect module for Symantec Norton AntiVirus 2004 and 2005, as also used in Internet Security 2004/2005 and System Works 2004/2005, allows attackers to cause a denial of service (CPU consumption and system crash) by renaming a file on a network share. |
|
36 |
CVE-2004-2609 |
|
|
Overflow +Info |
2004-12-31 |
2017-07-20 |
2.1 |
None |
Local |
Low |
Not required |
Partial |
None |
None |
|
The stuffit.com executable on Symantec PowerQuest DeployCenter 5.5 boot disks allows local users to obtain sensitive information (an unencrypted password for a Windows domain account) via four "stuffit /f:stuffit.dat" invocations, possibly due to a buffer overflow. |
|
37 |
CVE-2004-0445 |
|
|
DoS |
2004-07-07 |
2017-07-11 |
2.6 |
None |
Remote |
High |
Not required |
None |
None |
Partial |
|
The SYMDNS.SYS driver in Symantec Norton Internet Security and Professional 2002 through 2004, Norton Personal Firewall 2002 through 2004, Norton AntiSpam 2004, Client Firewall 5.01 and 5.1.1, and Client Security 1.0 through 2.0 allows remote attackers to cause a denial of service (CPU consumption from infinite loop) via a DNS response with a compressed name pointer that points to itself. |
