Broadcom

Symantec Critical System Protection

11 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2019-18374

  • EPSS 0.54%
  • Veröffentlicht 25.11.2019 17:15:11
  • Zuletzt bearbeitet 21.11.2024 04:33:09

Symantec Critical System Protection (CSP), versions 8.0, 8.0 HF1 & 8.0 MP1, may be susceptible to an authentication bypass vulnerability, which is a type of issue that can potentially allow a threat actor to circumvent existing authentication control...

7.3

CVE-2015-8800

  • EPSS 0.4%
  • Veröffentlicht 08.06.2016 14:59:11
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Symantec Embedded Security: Critical System Protection (SES:CSP) 1.0.x before 1.0 MP5, Embedded Security: Critical System Protection for Controllers and Devices (SES:CSP) 6.5.0 before MP1, Critical System Protection (SCSP) before 5.2.9 MP6, Data Cent...

7.6

CVE-2015-8799

  • EPSS 1.63%
  • Veröffentlicht 08.06.2016 14:59:09
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Directory traversal vulnerability in the Management Server in Symantec Embedded Security: Critical System Protection (SES:CSP) 1.0.x before 1.0 MP5, Embedded Security: Critical System Protection for Controllers and Devices (SES:CSP) 6.5.0 before MP1,...

8

CVE-2015-8798

  • EPSS 1.55%
  • Veröffentlicht 08.06.2016 14:59:06
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Directory traversal vulnerability in the Management Server in Symantec Embedded Security: Critical System Protection (SES:CSP) 1.0.x before 1.0 MP5, Embedded Security: Critical System Protection for Controllers and Devices (SES:CSP) 6.5.0 before MP1,...

8.8

CVE-2015-8157

  • EPSS 0.41%
  • Veröffentlicht 08.06.2016 14:59:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

SQL injection vulnerability in the Management Server in Symantec Embedded Security: Critical System Protection (SES:CSP) 1.0.x before 1.0 MP5, Embedded Security: Critical System Protection for Controllers and Devices (SES:CSP) 6.5.0 before MP1, Criti...

7.2

CVE-2014-9226

  • EPSS 1.33%
  • Veröffentlicht 21.01.2015 15:17:07
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The management server in Symantec Critical System Protection (SCSP) 5.2.9 through MP6 and Symantec Data Center Security: Server Advanced (SDCS:SA) 6.0.x through 6.0 MP1 allows local users to bypass intended Protection Policies via unspecified vectors...

4

CVE-2014-9225

  • EPSS 10.12%
  • Veröffentlicht 21.01.2015 15:17:06
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The ajaxswing webui in the management server in Symantec Critical System Protection (SCSP) 5.2.9 through MP6 and Symantec Data Center Security: Server Advanced (SDCS:SA) 6.0.x through 6.0 MP1 allows remote authenticated users to obtain sensitive serv...

3.5

CVE-2014-9224

  • EPSS 3.99%
  • Veröffentlicht 21.01.2015 15:17:05
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in the ajaxswing webui in the Management Console server in the management server in Symantec Critical System Protection (SCSP) 5.2.9 through MP6 and Symantec Data Center Security: Server Advanced (SDCS:SA) 6.0...

6.5

CVE-2014-7289

  • EPSS 0.88%
  • Veröffentlicht 21.01.2015 15:17:02
  • Zuletzt bearbeitet 12.04.2025 10:46:40

SQL injection vulnerability in the management server in Symantec Critical System Protection (SCSP) 5.2.9 before MP6 and Symantec Data Center Security: Server Advanced (SDCS:SA) 6.0.x before 6.0 MP1 allows remote authenticated users to execute arbitra...

9

CVE-2014-3440

  • EPSS 0.94%
  • Veröffentlicht 21.01.2015 15:17:00
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The Agent Control Interface in the management server in Symantec Critical System Protection (SCSP) 5.2.9 before MP6 and Symantec Data Center Security: Server Advanced (SDCS:SA) 6.0.x before 6.0 MP1 allows remote authenticated users to execute arbitra...