Symantec Endpoint Detection and Response (SEDR) 4.1.0

CPE Details

Symantec Endpoint Detection and Response (SEDR) 4.1.0
symantec
endpoint_detection_and_response
4.1.0
2020-01-16
18h24 +00:00
2020-01-16
18h24 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:symantec:endpoint_detection_and_response:4.1.0:*:*:*:*:*:*:*

Informations

Vendor

symantec

Product

endpoint_detection_and_response

Version

4.1.0

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2022-37015 2022-11-08 00h00 +00:00 Symantec Endpoint Detection and Response (SEDR) Appliance, prior to 4.7.0, may be susceptible to a privilege escalation vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated access to resources that are normally protected from an application or user.
9.8
Critical
CVE-2020-12593 2020-11-18 21h40 +00:00 Symantec Endpoint Detection & Response, prior to 4.5, may be susceptible to an information disclosure issue, which is a type of vulnerability that could potentially allow unauthorized access to data.
7.5
High
CVE-2020-5839 2020-07-08 13h08 +00:00 Symantec Endpoint Detection And Response, prior to 4.4, may be susceptible to an information disclosure issue, which is a type of vulnerability that could potentially allow unauthorized access to data.
7.5
High
CVE-2019-19547 2020-01-13 14h10 +00:00 Symantec Endpoint Detection and Response (SEDR), prior to 4.3.0, may be susceptible to a cross site scripting (XSS) issue. XSS is a type of issue that can enable attackers to inject client-side scripts into web pages viewed by other users. An XSS vulnerability may be used by attackers to potentially bypass access controls such as the same-origin policy.
6.1
Medium
The information presented on CVE Find originates from several carefully selected reference sources. CVE data is provided by MITRE Corporation and the National Vulnerability Database (NVD). The Known Exploited Vulnerabilities (KEV) catalog is sourced from the Cybersecurity and Infrastructure Security Agency (CISA), while EPSS scores come from FIRST.org. Additionally, data regarding software weaknesses (CWE) and common attack patterns (CAPEC) is maintained by MITRE Corporation, and information on hardware and software configurations (CPE) is provided by the NVD.