CVE-2019-18374
- EPSS 0.54%
- Published 25.11.2019 17:15:11
- Last modified 21.11.2024 04:33:09
Symantec Critical System Protection (CSP), versions 8.0, 8.0 HF1 & 8.0 MP1, may be susceptible to an authentication bypass vulnerability, which is a type of issue that can potentially allow a threat actor to circumvent existing authentication control...
CVE-2015-8800
- EPSS 0.4%
- Published 08.06.2016 14:59:11
- Last modified 12.04.2025 10:46:40
Symantec Embedded Security: Critical System Protection (SES:CSP) 1.0.x before 1.0 MP5, Embedded Security: Critical System Protection for Controllers and Devices (SES:CSP) 6.5.0 before MP1, Critical System Protection (SCSP) before 5.2.9 MP6, Data Cent...
CVE-2015-8799
- EPSS 1.63%
- Published 08.06.2016 14:59:09
- Last modified 12.04.2025 10:46:40
Directory traversal vulnerability in the Management Server in Symantec Embedded Security: Critical System Protection (SES:CSP) 1.0.x before 1.0 MP5, Embedded Security: Critical System Protection for Controllers and Devices (SES:CSP) 6.5.0 before MP1,...
- EPSS 1.55%
- Published 08.06.2016 14:59:06
- Last modified 12.04.2025 10:46:40
Directory traversal vulnerability in the Management Server in Symantec Embedded Security: Critical System Protection (SES:CSP) 1.0.x before 1.0 MP5, Embedded Security: Critical System Protection for Controllers and Devices (SES:CSP) 6.5.0 before MP1,...
CVE-2015-8157
- EPSS 0.41%
- Published 08.06.2016 14:59:00
- Last modified 12.04.2025 10:46:40
SQL injection vulnerability in the Management Server in Symantec Embedded Security: Critical System Protection (SES:CSP) 1.0.x before 1.0 MP5, Embedded Security: Critical System Protection for Controllers and Devices (SES:CSP) 6.5.0 before MP1, Criti...
CVE-2014-9226
- EPSS 1.33%
- Published 21.01.2015 15:17:07
- Last modified 12.04.2025 10:46:40
The management server in Symantec Critical System Protection (SCSP) 5.2.9 through MP6 and Symantec Data Center Security: Server Advanced (SDCS:SA) 6.0.x through 6.0 MP1 allows local users to bypass intended Protection Policies via unspecified vectors...
- EPSS 10.12%
- Published 21.01.2015 15:17:06
- Last modified 12.04.2025 10:46:40
The ajaxswing webui in the management server in Symantec Critical System Protection (SCSP) 5.2.9 through MP6 and Symantec Data Center Security: Server Advanced (SDCS:SA) 6.0.x through 6.0 MP1 allows remote authenticated users to obtain sensitive serv...
CVE-2014-9224
- EPSS 3.99%
- Published 21.01.2015 15:17:05
- Last modified 12.04.2025 10:46:40
Cross-site scripting (XSS) vulnerability in the ajaxswing webui in the Management Console server in the management server in Symantec Critical System Protection (SCSP) 5.2.9 through MP6 and Symantec Data Center Security: Server Advanced (SDCS:SA) 6.0...
CVE-2014-7289
- EPSS 0.88%
- Published 21.01.2015 15:17:02
- Last modified 12.04.2025 10:46:40
SQL injection vulnerability in the management server in Symantec Critical System Protection (SCSP) 5.2.9 before MP6 and Symantec Data Center Security: Server Advanced (SDCS:SA) 6.0.x before 6.0 MP1 allows remote authenticated users to execute arbitra...
- EPSS 0.94%
- Published 21.01.2015 15:17:00
- Last modified 12.04.2025 10:46:40
The Agent Control Interface in the management server in Symantec Critical System Protection (SCSP) 5.2.9 before MP6 and Symantec Data Center Security: Server Advanced (SDCS:SA) 6.0.x before 6.0 MP1 allows remote authenticated users to execute arbitra...