Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2012-4350
HistoryDec 18, 2012 - 8:55 p.m.

CVE-2012-4350

2012-12-1820:55:01
[email protected]
web.nvd.nist.gov
3

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.7

Confidence

Low

EPSS

0

Percentile

9.5%

JSON

Multiple unquoted Windows search path vulnerabilities in the (1) Manager and (2) Agent components in Symantec Enterprise Security Manager (ESM) before 11.0 allow local users to gain privileges via unspecified vectors.

Affected configurations

Nvd
Node
symantecenterprise_security_managerRange10.0
OR
symantecenterprise_security_managerMatch6.0
OR
symantecenterprise_security_managerMatch6.5
OR
symantecenterprise_security_managerMatch6.5.0
OR
symantecenterprise_security_managerMatch6.5.1
OR
symantecenterprise_security_managerMatch6.5.2
OR
symantecenterprise_security_managerMatch6.5.3
OR
symantecenterprise_security_managerMatch9.0
OR
symantecenterprise_security_managerMatch9.0.1
VendorProductVersionCPE
symantecenterprise_security_manager*cpe:2.3:a:symantec:enterprise_security_manager:*:*:*:*:*:*:*:*
symantecenterprise_security_manager6.0cpe:2.3:a:symantec:enterprise_security_manager:6.0:*:*:*:*:*:*:*
symantecenterprise_security_manager6.5cpe:2.3:a:symantec:enterprise_security_manager:6.5:*:*:*:*:*:*:*
symantecenterprise_security_manager6.5.0cpe:2.3:a:symantec:enterprise_security_manager:6.5.0:*:*:*:*:*:*:*
symantecenterprise_security_manager6.5.1cpe:2.3:a:symantec:enterprise_security_manager:6.5.1:*:*:*:*:*:*:*
symantecenterprise_security_manager6.5.2cpe:2.3:a:symantec:enterprise_security_manager:6.5.2:*:*:*:*:*:*:*
symantecenterprise_security_manager6.5.3cpe:2.3:a:symantec:enterprise_security_manager:6.5.3:*:*:*:*:*:*:*
symantecenterprise_security_manager9.0cpe:2.3:a:symantec:enterprise_security_manager:9.0:*:*:*:*:*:*:*
symantecenterprise_security_manager9.0.1cpe:2.3:a:symantec:enterprise_security_manager:9.0.1:*:*:*:*:*:*:*

Related

openvas 3
symantec 1
cve 1
nessus 1
securityvulns 1
prion 1
cvelist 1
openvas
openvas
Symantec Enterprise Security Manager/Agent Privilege Escalation Vulnerability
2013-01-08 00:00:00
Symantec Enterprise Security Manager/Agent Privilege Escalation Vulnerability
2013-01-08 00:00:00
Microsoft Windows Unquoted Path Vulnerability (SMB Login)
2018-03-23 00:00:00
symantec
symantec
Symantec Enterprise Security Manager Manager/Agent Local Elevation of Privilege
2012-12-13 08:00:00
cve
cve
CVE-2012-4350
2012-12-18 20:55:01
nessus
nessus
Symantec Enterprise Security Manager Unquoted Search Path (SYM12-020)
2013-09-06 00:00:00
securityvulns
securityvulns
Symantec Enterprise Security Manager privilege escalation
2013-02-11 00:00:00
prion
prion
Path traversal
2012-12-18 20:55:00
cvelist
cvelist
CVE-2012-4350
2012-12-18 20:00:00

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.7

Confidence

Low

EPSS

0

Percentile

9.5%

JSON
Related for NVD:CVE-2012-4350
openvas3symantec1cve1nessus1securityvulns1prion1cvelist1