Lucene search
SymantecCVE-2015-1490HistoryAug 01, 2015 - 1:59 a.m.
CVE-2015-1490
2015-08-0101:59:07
CWE-22
symantec
web.nvd.nist.gov
31
cve-2015-1490
directory traversal
symantec endpoint protection manager
sepm
vulnerability
management console
remote authentication
nvd
CVSS2
5.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:P/A:P
AI Score
6.2
Confidence
Low
EPSS
0.001
Percentile
42.6%
Directory traversal vulnerability in the management console in Symantec Endpoint Protection Manager (SEPM) 12.1 before 12.1-RU6-MP1 allows remote authenticated users to read arbitrary files via a relative pathname in a client installation package.
Affected configurations
Node
symantecendpoint_protection_managerMatch12.1.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| symantec | endpoint_protection_manager | 12.1.0 | cpe:2.3:a:symantec:endpoint_protection_manager:12.1.0:*:*:*:*:*:*:* |
Related
prion
prion
Directory traversal
2015-08-01 01:59:00
nvd
nvd
CVE-2015-1490
2015-08-01 01:59:07
cvelist
cvelist
CVE-2015-1490
2015-08-01 01:00:00
nessus
nessus
openvas
openvas
Symantec Endpoint Protection Manager Multiple Vulnerabilities (Aug 2015)
2015-08-14 00:00:00
symantec
symantec
Symantec Endpoint Protection Multiple Issues
2015-07-30 08:00:00
zdt
zdt
Symantec Endpoint Protection Multiple Vulnerabilities
2015-08-01 00:00:00
CVSS2
5.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:N/I:P/A:P
AI Score
6.2
Confidence
Low
EPSS
0.001
Percentile
42.6%
Related for CVE-2015-1490