CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2019-12753

An information disclosure vulnerability in Symantec Reporter web UI 10.3 prior to 10.3.2.5 allows a malicious authenticated administrator user to obtain passwords for external SMTP, FTP, FTPS, LDAP, and Cloud Log Download servers that they might not otherwise be authorized to access. The malicious administrator user can also obtain the passwords of other Reporter web UI users.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 56.6%

CVSS Severity

CVSS v3 Score 4.9

CVSS v2 Score 4.0

References

https://support.symantec.com/us/en/article.SYMSA1489.html
https://support.symantec.com/us/en/article.SYMSA1489.html

Products affected by CVE-2019-12753

Symantec » Reporter » Version: 10.3

cpe:2.3:a:symantec:reporter:10.3
Symantec » Reporter » Version: 10.3.1.1

cpe:2.3:a:symantec:reporter:10.3.1.1
Symantec » Reporter » Version: 10.3.2.1

cpe:2.3:a:symantec:reporter:10.3.2.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-12753

Products

Pricing

Contact Us