SQL Injection Vulnerability in Symantec Endpoint Protection Manager and Symantec Protection Center
CVE-2013-5015

Currently unrated

Key Information:

Vendor

Symantec
Status
Protection Center
Endpoint Protection Manager
Vendor
CVE Published:
14 February 2014

What is CVE-2013-5015?

The SQL injection vulnerability found in Symantec Endpoint Protection Manager and Symantec Protection Center Small Business Edition enables remote authenticated users to execute arbitrary SQL code. This issue affects specific versions of the software, allowing a potential attacker to manipulate the database via SQL queries and access sensitive information or modify the database contents. It is crucial for users of the affected products to apply available security updates to mitigate this risk.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.symantec.com/security_response/securityupdates...
x_refsource_CONFIRM
https://www.sec-consult.com/fxdata/seccons/prod/temedia/a...
x_refsource_MISC
http://www.exploit-db.com/exploits/31853
exploitx_refsource_EXPLOIT-DB

EPSS Score

74% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.