CVE-2007-3095

3 documents3 sources
Severity
9.0CRITICAL
EPSS
0.8%
top 25.94%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Symantec Reporting ServerSymantec Client SecuritySymantec Norton Antivirus
Timeline
PublishedJun 6
Latest updateMay 1

Description

Unspecified vulnerability in Symantec Reporting Server 1.0.197.0, and other versions before 1.0.224.0, as used in Symantec Client Security 3.1 and later, and Symantec AntiVirus Corporate Edition (SAV CE) 10.1 and later, allows attackers to "disable the authentication system" and bypass authentication via unknown vectors.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 8.0 | Impact: 10.0

Affected Packages3 packages

NVDsymantec/client_security5 versions+4
NVDsymantec/norton_antivirus5 versions+4

🔴Vulnerability Details

2
GHSA
GHSA-wwv5-v5pq-x484: Unspecified vulnerability in Symantec Reporting Server 12022-05-01
CVEList
CVE-2007-3095: Unspecified vulnerability in Symantec Reporting Server 12007-06-06
CVE-2007-3095 (CRITICAL CVSS 9) | Unspecified vulnerability in Symant | cvebase.io