Skip to main content

Security Information Manager Appliance

3 CVEs product

Monthly

CVE-2013-1615 LOW Monitor

The management console (aka Java console) on the Symantec Security Information Manager (SSIM) appliance 4.7.x and 4.8.x before 4.8.1 allows remote attackers to obtain sensitive information via. Rated low severity (CVSS 2.9). No vendor patch available.

Information Disclosure Java Security Information Manager Security Information Manager Appliance
NVD
CVSS 2.0
2.9
EPSS
0.1%
CVE-2013-1614 MEDIUM This Month

Multiple cross-site scripting (XSS) vulnerabilities in the management console (aka Java console) on the Symantec Security Information Manager (SSIM) appliance 4.7.x and 4.8.x before 4.8.1 allow. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

Java XSS Security Information Manager Security Information Manager Appliance
NVD
CVSS 2.0
4.3
EPSS
0.3%
CVE-2013-1613 MEDIUM This Month

SQL injection vulnerability in the management console (aka Java console) on the Symantec Security Information Manager (SSIM) appliance 4.7.x and 4.8.x before 4.8.1 allows remote authenticated users. Rated medium severity (CVSS 4.7), this vulnerability is low attack complexity. No vendor patch available.

SQLi Java Security Information Manager Security Information Manager Appliance
NVD
CVSS 2.0
4.7
EPSS
0.5%
EPSS 0% CVSS 2.9
LOW Monitor

The management console (aka Java console) on the Symantec Security Information Manager (SSIM) appliance 4.7.x and 4.8.x before 4.8.1 allows remote attackers to obtain sensitive information via. Rated low severity (CVSS 2.9). No vendor patch available.

Information Disclosure Java Security Information Manager +1
NVD
EPSS 0% CVSS 4.3
MEDIUM This Month

Multiple cross-site scripting (XSS) vulnerabilities in the management console (aka Java console) on the Symantec Security Information Manager (SSIM) appliance 4.7.x and 4.8.x before 4.8.1 allow. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.

Java XSS Security Information Manager +1
NVD
EPSS 1% CVSS 4.7
MEDIUM This Month

SQL injection vulnerability in the management console (aka Java console) on the Symantec Security Information Manager (SSIM) appliance 4.7.x and 4.8.x before 4.8.1 allows remote authenticated users. Rated medium severity (CVSS 4.7), this vulnerability is low attack complexity. No vendor patch available.

SQLi Java Security Information Manager +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy