cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2016-5311,https://securityvulnerability.io/vulnerability/CVE-2016-5311,Privilege Escalation Vulnerability in Symantec Norton Products,"A privilege escalation vulnerability has been identified in a range of Symantec Norton products, stemming from improper DLL preloading that lacks appropriate path restrictions. This security flaw could enable a local malicious user to gain unauthorized system privileges, potentially allowing them to execute arbitrary code with elevated rights, thereby compromising the affected system's integrity and security.",Symantec,"Norton Antivirus, Norton Antivirus With Backup, Norton Security, Norton Security With Backup, Norton Internet Security, Norton 360,Endpoint Protection Small Business Edition Cloud, And Endpoint Protection Cloud Client",7.8,HIGH,0.0022799998987466097,false,,false,false,false,,,false,false,,2020-01-09T19:30:52.000Z,0
CVE-2016-6585,https://securityvulnerability.io/vulnerability/CVE-2016-6585,Denial of Service Vulnerability in Symantec Norton Mobile Security for Android,"A Denial of Service vulnerability affects Symantec Norton Mobile Security for Android, potentially allowing remote attackers to exploit a flaw via specially crafted JavaScript. This vulnerability can facilitate a man-in-the-middle attack, compromising user security and allowing unauthorized interception of data. Users are urged to update to version 3.16 or higher to mitigate the risks associated with this vulnerability.",Symantec,Norton Mobile Security For Android,5.3,MEDIUM,0.0012700000079348683,false,,false,false,false,,,false,false,,2020-01-08T18:17:46.000Z,0
CVE-2016-6587,https://securityvulnerability.io/vulnerability/CVE-2016-6587,Information Disclosure Vulnerability in Symantec Norton Mobile Security for Android,"An information disclosure vulnerability has been identified in the mid.dat file located on the SD card within Symantec Norton Mobile Security for Android. This vulnerability permits a local attacker to gain unauthorized access to sensitive information stored in this file, potentially compromising user privacy and security. Users of versions prior to 3.16 should take precautions to mitigate potential risks.",Symantec,Norton Mobile Security For Android,5.5,MEDIUM,0.000750000006519258,false,,false,false,false,,,false,false,,2020-01-08T17:03:29.000Z,0
CVE-2016-6586,https://securityvulnerability.io/vulnerability/CVE-2016-6586,Security Bypass Vulnerability in Symantec Norton Mobile Security for Android,"A security bypass vulnerability in Symantec Norton Mobile Security for Android, prior to version 3.16, allows an attacker to perform a man-in-the-middle attack. This can be achieved through specially crafted JavaScript, enabling an unauthorized user to add arbitrary URLs to the URL whitelist, compromising the integrity of the application and endangering user data and privacy.",Symantec,Norton Mobile Security For Android,3.7,LOW,0.0013200000394135714,false,,false,false,false,,,false,false,,2020-01-08T16:51:32.000Z,0
CVE-2018-18366,https://securityvulnerability.io/vulnerability/CVE-2018-18366,Kernel Memory Disclosure in Symantec Norton Security and SEP Products,"A vulnerability exists in Symantec Norton Security and SEP products, where a specially crafted IRP request can lead to kernel memory disclosure. This issue allows the driver to return uninitialized memory, potentially exposing sensitive data in the system memory. Users of affected versions are advised to upgrade their software to mitigate the risk and enhance the security of their systems.",Symantec Corporation,"Norton Security,Sep (windows Client),Sep Sbe,Sep Cloud",6.5,MEDIUM,0.00044999999227002263,false,,false,false,false,,,false,false,,2019-04-25T19:13:05.000Z,0
CVE-2018-18369,https://securityvulnerability.io/vulnerability/CVE-2018-18369,DLL Preloading Vulnerability in Norton Security for Windows by Symantec,"Norton Security for Windows and SEP SBE are vulnerable to a DLL Preloading issue, where an application may inadvertently execute a malicious DLL provided by an attacker, potentially leading to unauthorized actions within the affected software. This vulnerability affects multiple versions and poses a risk to users who may be unaware of the exploit.",Symantec Corporation,"Norton Security,Symantec Endpoint Protection Small Business Edition",7.8,HIGH,0.0008399999933317304,false,,false,false,false,,,false,false,,2019-04-25T16:55:04.000Z,0
CVE-2016-3644,https://securityvulnerability.io/vulnerability/CVE-2016-3644,,"The AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) before 12.1 RU6 MP5; Symantec Endpoint Protection (SEP) for Mac; Symantec Endpoint Protection (SEP) for Linux before 12.1 RU6 MP5; Symantec Protection Engine (SPE) before 7.0.5 HF01, 7.5.x before 7.5.3 HF03, 7.5.4 before HF01, and 7.8.0 before HF01; Symantec Protection for SharePoint Servers (SPSS) 6.0.3 through 6.0.5 before 6.0.5 HF 1.5 and 6.0.6 before HF 1.6; Symantec Mail Security for Microsoft Exchange (SMSMSE) before 7.0_3966002 HF1.1 and 7.5.x before 7.5_3966008 VHF1.2; Symantec Mail Security for Domino (SMSDOM) before 8.0.9 HF1.1 and 8.1.x before 8.1.3 HF1.2; CSAPI before 10.0.4 HF01; Symantec Message Gateway (SMG) before 10.6.1-4; Symantec Message Gateway for Service Providers (SMG-SP) 10.5 before patch 254 and 10.6 before patch 253; Norton AntiVirus, Norton Security, Norton Internet Security, and Norton 360 before NGC 22.7; Norton Security for Mac before 13.0.2; Norton Power Eraser (NPE) before 5.1; and Norton Bootable Removal Tool (NBRT) before 2016.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via modified MIME data in a message.",Symantec,Norton Security,8.4,HIGH,0.26260000467300415,false,,false,false,false,,,false,false,,2016-06-30T23:59:00.000Z,0
CVE-2016-3645,https://securityvulnerability.io/vulnerability/CVE-2016-3645,,"Integer overflow in the TNEF unpacker in the AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) before 12.1 RU6 MP5; Symantec Endpoint Protection (SEP) for Mac; Symantec Endpoint Protection (SEP) for Linux before 12.1 RU6 MP5; Symantec Protection Engine (SPE) before 7.0.5 HF01, 7.5.x before 7.5.3 HF03, 7.5.4 before HF01, and 7.8.0 before HF01; Symantec Protection for SharePoint Servers (SPSS) 6.0.3 through 6.0.5 before 6.0.5 HF 1.5 and 6.0.6 before HF 1.6; Symantec Mail Security for Microsoft Exchange (SMSMSE) before 7.0_3966002 HF1.1 and 7.5.x before 7.5_3966008 VHF1.2; Symantec Mail Security for Domino (SMSDOM) before 8.0.9 HF1.1 and 8.1.x before 8.1.3 HF1.2; CSAPI before 10.0.4 HF01; Symantec Message Gateway (SMG) before 10.6.1-4; Symantec Message Gateway for Service Providers (SMG-SP) 10.5 before patch 254 and 10.6 before patch 253; Norton AntiVirus, Norton Security, Norton Internet Security, and Norton 360 before NGC 22.7; Norton Security for Mac before 13.0.2; Norton Power Eraser (NPE) before 5.1; and Norton Bootable Removal Tool (NBRT) before 2016.1 allows remote attackers to have an unspecified impact via crafted TNEF data.",Symantec,Norton Security,9.8,CRITICAL,0.06528999656438828,false,,false,false,false,,,false,false,,2016-06-30T23:59:00.000Z,0
CVE-2016-3646,https://securityvulnerability.io/vulnerability/CVE-2016-3646,,"The AntiVirus Decomposer engine in Symantec Advanced Threat Protection (ATP); Symantec Data Center Security:Server (SDCS:S) 6.x through 6.6 MP1; Symantec Web Gateway; Symantec Endpoint Protection (SEP) before 12.1 RU6 MP5; Symantec Endpoint Protection (SEP) for Mac; Symantec Endpoint Protection (SEP) for Linux before 12.1 RU6 MP5; Symantec Protection Engine (SPE) before 7.0.5 HF01, 7.5.x before 7.5.3 HF03, 7.5.4 before HF01, and 7.8.0 before HF01; Symantec Protection for SharePoint Servers (SPSS) 6.0.3 through 6.0.5 before 6.0.5 HF 1.5 and 6.0.6 before HF 1.6; Symantec Mail Security for Microsoft Exchange (SMSMSE) before 7.0_3966002 HF1.1 and 7.5.x before 7.5_3966008 VHF1.2; Symantec Mail Security for Domino (SMSDOM) before 8.0.9 HF1.1 and 8.1.x before 8.1.3 HF1.2; CSAPI before 10.0.4 HF01; Symantec Message Gateway (SMG) before 10.6.1-4; Symantec Message Gateway for Service Providers (SMG-SP) 10.5 before patch 254 and 10.6 before patch 253; Norton AntiVirus, Norton Security, Norton Internet Security, and Norton 360 before NGC 22.7; Norton Security for Mac before 13.0.2; Norton Power Eraser (NPE) before 5.1; and Norton Bootable Removal Tool (NBRT) before 2016.1 allows remote attackers to execute arbitrary code or cause a denial of service (memory access violation) via a crafted ZIP archive that is mishandled during decompression.",Symantec,Norton Security,8.4,HIGH,0.3181400001049042,false,,false,false,false,,,false,false,,2016-06-30T23:59:00.000Z,0
CVE-2010-5168,https://securityvulnerability.io/vulnerability/CVE-2010-5168,,"Race condition in Symantec Norton Internet Security 2010 17.5.0.127 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler execution, aka an argument-switch attack or a KHOBE attack.  NOTE: this issue is disputed by some third parties because it is a flaw in a protection mechanism for situations where a crafted program has already begun to execute",Symantec,Norton Internet Security 2010,,,0.0004199999966658652,false,,false,false,false,,,false,false,,2012-08-25T21:55:00.000Z,0
CVE-2010-0107,https://securityvulnerability.io/vulnerability/CVE-2010-0107,,"Buffer overflow in an ActiveX control (SYMLTCOM.dll) in Symantec N360 1.0 and 2.0; Norton Internet Security, AntiVirus, SystemWorks, and Confidential 2006 through 2008; and Symantec Client Security 3.0.x before 3.1 MR9, and 3.1.x before MR9; allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via unknown vectors.  NOTE: this is only a vulnerability if the attacker can ""masquerade as an authorized site.""",Symantec,"Client Security,Norton Internet Security,Norton 360,Norton Antivirus",,,0.047210000455379486,false,,false,false,false,,,false,false,,2010-02-23T20:00:00.000Z,0
CVE-2009-3104,https://securityvulnerability.io/vulnerability/CVE-2009-3104,,"Unspecified vulnerability in Symantec Norton AntiVirus 2005 through 2008; Norton Internet Security 2005 through 2008; AntiVirus Corporate Edition 9.0 before MR7, 10.0, 10.1 before MR8, and 10.2 before MR3; and Client Security 2.0 before MR7, 3.0, and 3.1 before MR8; when Internet Email Scanning is installed and enabled, allows remote attackers to cause a denial of service (CPU consumption and persistent connection loss) via unknown attack vectors.",Symantec,"Client Security,Norton Internet Security,Antivirus,Norton Antivirus",,,0.00394000019878149,false,,false,false,false,,,false,false,,2009-09-08T22:00:00.000Z,0
CVE-2009-1428,https://securityvulnerability.io/vulnerability/CVE-2009-1428,,"Multiple cross-site scripting (XSS) vulnerabilities in ccLgView.exe in the Symantec Log Viewer, as used in Symantec AntiVirus (SAV) before 10.1 MR8, Symantec Endpoint Protection (SEP) 11.0 before 11.0 MR1, Norton 360 1.0, and Norton Internet Security 2005 through 2008, allow remote attackers to inject arbitrary web script or HTML via a crafted e-mail message, related to ""two parsing errors.""",Symantec,"Norton Internet Security,Antivirus,Endpoint Protection,Norton 360",,,0.011789999902248383,false,,false,false,false,,,false,false,,2009-04-29T15:00:00.000Z,0
CVE-2008-5427,https://securityvulnerability.io/vulnerability/CVE-2008-5427,,"Norton Antivirus in Norton Internet Security 15.5.0.23 does not properly handle (1) multipart/mixed e-mail messages with many MIME parts and possibly (2) e-mail messages with many ""Content-type: message/rfc822;"" headers, which allows remote attackers to cause a denial of service (stack consumption or other resource consumption) via a large e-mail message, a related issue to CVE-2006-1173.",Symantec,Norton Internet Security 2008,,,0.0035099999513477087,false,,false,false,false,,,false,false,,2008-12-11T15:00:00.000Z,0
CVE-2008-0312,https://securityvulnerability.io/vulnerability/CVE-2008-0312,,"Stack-based buffer overflow in the AutoFix Support Tool ActiveX control 2.7.0.1 in SYMADATA.DLL in multiple Symantec Norton products, including Norton 360 1.0, AntiVirus 2006 through 2008, Internet Security 2006 through 2008, and System Works 2006 through 2008, allows remote attackers to execute arbitrary code via a long argument to the GetEventLogInfo method.  NOTE: some of these details are obtained from third party information.",Symantec,"Norton 360,Norton Antivirus,Norton Internet Security,Norton System Works",,,0.07197000086307526,false,,false,false,false,,,false,false,,2008-04-08T17:00:00.000Z,0
CVE-2008-0313,https://securityvulnerability.io/vulnerability/CVE-2008-0313,,"The ActiveDataInfo.LaunchProcess method in the SymAData.ActiveDataInfo.1 ActiveX control 2.7.0.1 in SYMADATA.DLL in multiple Symantec Norton products including Norton 360 1.0, AntiVirus 2006 through 2008, Internet Security 2006 through 2008, and System Works 2006 through 2008, does not properly determine the location of the AutoFix Tool, which allows remote attackers to execute arbitrary code via a remote (1) WebDAV or (2) SMB share.",Symantec,"Norton Internet Security,Norton Antivirus,System Works,Norton 360",,,0.009469999931752682,false,,false,false,false,,,false,false,,2008-04-08T17:00:00.000Z,0
CVE-2007-5829,https://securityvulnerability.io/vulnerability/CVE-2007-5829,,"The Disk Mount scanner in Symantec AntiVirus for Macintosh 9.x and 10.x, Norton AntiVirus for Macintosh 10.0 and 10.1, and Norton Internet Security for Macintosh 3.x, uses a directory with weak permissions (group writable), which allows local admin users to gain root privileges by replacing unspecified files, which are executed when a user with physical access inserts a disk and the ""Show Progress During Mount Scans"" option is enabled.",Symantec,"Norton Antivirus,Norton Internet Security",,,0.0005000000237487257,false,,false,false,false,,,false,false,,2007-11-05T19:00:00.000Z,0
CVE-2007-0447,https://securityvulnerability.io/vulnerability/CVE-2007-0447,,Heap-based buffer overflow in the Decomposer component in multiple Symantec products allows remote attackers to execute arbitrary code via multiple crafted CAB archives.,Symantec,"Mail Security,Client Security,Norton Antivirus,Norton Internet Security,Antivirus Scan Engine,Web Security,Brightmail Antispam,Norton System Works,Symantec Antivirus Filtering \+for Domino,Norton Personal Firewall",,,0.1824599951505661,false,,false,false,false,,,false,false,,2007-10-05T21:00:00.000Z,0
CVE-2007-3699,https://securityvulnerability.io/vulnerability/CVE-2007-3699,,The Decomposer component in multiple Symantec products allows remote attackers to cause a denial of service (infinite loop) via a certain value in the PACK_SIZE field of a RAR archive file header.,Symantec,"Mail Security,Client Security,Norton Antivirus,Norton Internet Security,Antivirus Scan Engine,Web Security,Brightmail Antispam,Norton System Works,Symantec Antivirus Filtering \+for Domino,Norton Personal Firewall",,,0.0521400012075901,false,,false,false,false,,,false,false,,2007-10-05T21:00:00.000Z,0
CVE-2007-5047,https://securityvulnerability.io/vulnerability/CVE-2007-5047,,"Norton Internet Security 2008 15.0.0.60 does not properly validate certain parameters to System Service Descriptor Table (SSDT) function handlers, which allows local users to cause a denial of service (crash) and possibly gain privileges via the NtOpenSection kernel SSDT hook.  NOTE: the NtCreateMutant and NtOpenEvent function hooks are already covered by CVE-2007-1793.",Symantec,Norton Internet Security,,,0.0004299999854993075,false,,false,false,false,,,false,false,,2007-09-24T00:00:00.000Z,0
CVE-2007-2955,https://securityvulnerability.io/vulnerability/CVE-2007-2955,,"Multiple unspecified ""input validation error"" vulnerabilities in multiple ActiveX controls in NavComUI.dll, as used in multiple Norton AntiVirus, Internet Security, and System Works products for 2006, allows remote attackers to execute arbitrary code via (1) the AnomalyList property to AxSysListView32 and (2) Anomaly property to AxSysListView32OAA.",Symantec,"Norton System Works,Norton Internet Security,Norton Antivirus",,,0.9056199789047241,false,,false,false,false,,,false,false,,2007-08-09T21:00:00.000Z,0
CVE-2007-3800,https://securityvulnerability.io/vulnerability/CVE-2007-3800,,"Unspecified vulnerability in the Real-time scanner (RTVScan) component in Symantec AntiVirus Corporate Edition 9.0 through 10.1 and Client Security 2.0 through 3.1, when the Notification Message window is enabled, allows local users to gain privileges via crafted code.",Symantec,"Norton Antivirus,Client Security",,,0.0004299999854993075,false,,false,false,false,,,false,false,,2007-07-16T23:30:00.000Z,0
CVE-2007-3771,https://securityvulnerability.io/vulnerability/CVE-2007-3771,,"Stack-based buffer overflow in the Internet E-mail Auto-Protect feature in Symantec AntiVirus Corporate Edition before 10.1, and Client Security before 3.1, allows local users to cause a denial of service (service crash) via a long (1) To, (2) From, or (3) Subject header in an outbound SMTP e-mail message.  NOTE: the original vendor advisory referenced CVE-2006-3456, but this was an error.",Symantec,"Client Security,Norton Antivirus",,,0.0006000000284984708,false,,false,false,false,,,false,false,,2007-07-15T22:00:00.000Z,0
CVE-2007-3673,https://securityvulnerability.io/vulnerability/CVE-2007-3673,,"Symantec symtdi.sys before 7.0.0, as distributed in Symantec AntiVirus Corporate Edition 9 through 10.1 and Client Security 2.0 through 3.1, Norton AntiSpam 2005, and Norton AntiVirus, Internet Security, Personal Firewall, and System Works 2005 and 2006; allows local users to gain privileges via a crafted Interrupt Request Packet (Irp) in an IOCTL 0x83022323 request to \\symTDI\, which results in memory overwrite.",Symantec,"Norton Antivirus,Client Security,Norton System Works,Norton Antispam,Norton Personal Firewall,Norton Internet Security",,,0.0004199999966658652,false,,false,false,false,,,false,false,,2007-07-15T21:00:00.000Z,0
CVE-2007-3095,https://securityvulnerability.io/vulnerability/CVE-2007-3095,,"Unspecified vulnerability in Symantec Reporting Server 1.0.197.0, and other versions before 1.0.224.0, as used in Symantec Client Security 3.1 and later, and Symantec AntiVirus Corporate Edition (SAV CE) 10.1 and later, allows attackers to ""disable the authentication system"" and bypass authentication via unknown vectors.",Symantec,"Norton Antivirus,Client Security,Reporting Server",,,0.002839999971911311,false,,false,false,false,,,false,false,,2007-06-06T22:00:00.000Z,0