CVE-2013-5014

NONECVSS 0.0

0.0

The management console in Symantec Endpoint Protection Manager (SEPM) 11.0 before 11.0.7405.1424 and 12.1 before 12.1.4023.4080, and Symantec Protection Center Small Business Edition 12.x before 12.1.4023.4080, allows remote attackers to read arbitrary files via XML data containing an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue.

🔗 References (10)

secure@symantechttp://www.exploit-db.com/exploits/31853
secure@symantechttp://www.exploit-db.com/exploits/31917
secure@symantechttp://www.securityfocus.com/bid/65466
secure@symantechttp://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20140213_00
secure@symantechttps://www.sec-consult.com/fxdata/seccons/prod/temedia/advisories_txt/20140218-0_Symantec_Endpoint_Protection_Multiple_critical_vulnerabilities_wo_poc_v10.txt
af854a3a-2127-422b-91ae-364da2661108http://www.exploit-db.com/exploits/31853
af854a3a-2127-422b-91ae-364da2661108http://www.exploit-db.com/exploits/31917
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/65466
af854a3a-2127-422b-91ae-364da2661108http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20140213_00
af854a3a-2127-422b-91ae-364da2661108https://www.sec-consult.com/fxdata/seccons/prod/temedia/advisories_txt/20140218-0_Symantec_Endpoint_Protection_Multiple_critical_vulnerabilities_wo_poc_v10.txt

Is Your Infrastructure Affected by CVE-2013-5014?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2013-5014

📅 Published

🔄 Last Modified

🔗 References (10)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2013-5014?