| Max CVSS | 6.8 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2017-6331 | 3.6 |
Prior to SEP 14 RU1 Symantec Endpoint Protection product can encounter an issue of Tamper-Protection Bypass, which is a type of attack that bypasses the real time protection for the application that is run on servers and clients.
|
16-09-2020 - 13:15 | 06-11-2017 - 23:29 | |
| CVE-2017-14010 | 6.8 |
In SpiderControl MicroBrowser Windows XP, Vista 7, 8 and 10, Versions 1.6.30.144 and prior, an uncontrolled search path element vulnerability has been identified which could be exploited by placing a specially crafted DLL file in the search path. If
|
09-10-2019 - 23:23 | 26-04-2018 - 19:29 | |
| CVE-2017-12289 | 2.1 |
A vulnerability in conditional, verbose debug logging for the IPsec feature of Cisco IOS XE Software could allow an authenticated, local attacker to display sensitive IPsec information in the system log file. The vulnerability is due to incorrect imp
|
09-10-2019 - 23:22 | 19-10-2017 - 08:29 | |
| CVE-2017-12284 | 2.1 |
A vulnerability in the web interface of Cisco Jabber for Windows Client could allow an authenticated, local attacker to retrieve user profile information, which could lead to the disclosure of confidential information. The vulnerability is due to a l
|
09-10-2019 - 23:22 | 19-10-2017 - 08:29 | |
| CVE-2017-15590 | 4.6 |
An issue was discovered in Xen through 4.9.x allowing x86 guest OS users to cause a denial of service (hypervisor crash) or possibly gain privileges because MSI mapping was mishandled.
|
03-10-2019 - 00:03 | 18-10-2017 - 08:29 | |
| CVE-2017-13681 | 4.6 |
Symantec Endpoint Protection prior to SEP 12.1 RU6 MP9 could be susceptible to a privilege escalation vulnerability, which is a type of issue that allows a user to gain elevated access to resources that are normally protected at lower access levels.
|
03-10-2019 - 00:03 | 06-11-2017 - 23:29 | |
| CVE-2017-13680 | 3.6 |
Prior to SEP 12.1 RU6 MP9 & SEP 14 RU1 Symantec Endpoint Protection Windows endpoint can encounter a situation whereby an attacker could use the product's UI to perform unauthorized file deletes on the resident file system.
|
03-10-2019 - 00:03 | 06-11-2017 - 23:29 | |
| CVE-2014-3709 | 6.8 |
The org.keycloak.services.resources.SocialResource.callback method in JBoss KeyCloak before 1.0.3.Final allows remote attackers to conduct cross-site request forgery (CSRF) attacks by leveraging lack of CSRF protection.
|
07-11-2017 - 13:21 | 18-10-2017 - 14:29 | |
| CVE-2014-3706 | 4.3 |
ovirt-engine, as used in Red Hat MRG 3, allows man-in-the-middle attackers to spoof servers by leveraging failure to verify key attributes in vdsm X.509 certificates.
|
07-11-2017 - 13:15 | 18-10-2017 - 14:29 | |
| CVE-2014-3164 | 5.0 |
cmds/servicemanager/service_manager.c in Android before commit 7d42a3c31ba78a418f9bdde0e0ab951469f321b5 allows attackers to cause a denial of service (NULL pointer dereference, or out-of-bounds write) via vectors related to binder passed lengths.
|
07-11-2017 - 13:07 | 18-10-2017 - 14:29 | |
| CVE-2004-0156 | 5.0 |
Format string vulnerabilities in the (1) die or (2) log_event functions for ssmtp before 2.50.6 allow remote mail relays to cause a denial of service and possibly execute arbitrary code.
|
11-07-2017 - 01:29 | 01-06-2004 - 04:00 |