CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Symantec: >> Data Loss Prevention >> 11.1.2 Security Vulnerabilities

CVE-2015-1485

Cross-site request forgery (CSRF) vulnerability in the administration console in the Enforce Server in Symantec Data Loss Prevention (DLP) before 12.5.2 allows remote attackers to hijack the authentication of administrators.

CVSS Score

6.8

EPSS Score

0.002

Published

2015-06-28

CVE-2014-9230

Cross-site scripting (XSS) vulnerability in the administration console in the Enforce Server in Symantec Data Loss Prevention (DLP) before 12.5.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CVSS Score

4.3

EPSS Score

0.006

Published

2015-06-28

Page 1

Vulnerabilities

Vulnerable Software

Symantec: >> Data Loss Prevention >> 11.1.2 Security Vulnerabilities

Products

Pricing

Contact Us