Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2013-5015

CWE-89 — SQL Injection7 documents6 sources

Severity

6.5MEDIUM

EPSS

64.5%

top 1.55%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Symantec Endpoint Protection Manager Symantec Protection Center

Timeline

PublishedFeb 14

Latest updateMay 17

Description

SQL injection vulnerability in the management console in Symantec Endpoint Protection Manager (SEPM) 11.0 before 11.0.7405.1424 and 12.1 before 12.1.4023.4080, and Symantec Protection Center Small Business Edition 12.x before 12.1.4023.4080, allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 8.0 | Impact: 6.4

Affected Packages2 packages

▶NVDsymantec/endpoint_protection_manager5 versions+4

▶NVDsymantec/protection_center12.0

🔴Vulnerability Details

GHSA

GHSA-mmjr-mm5j-gc42: SQL injection vulnerability in the management console in Symantec Endpoint Protection Manager (SEPM) 11↗2022-05-17

▶

CVEList

CVE-2013-5015: SQL injection vulnerability in the management console in Symantec Endpoint Protection Manager (SEPM) 11↗2014-02-14

▶

VulnCheck

Symantec endpoint_protection_manager Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')↗2013

▶

💥Exploits & PoCs

Exploit-DB

Symantec Endpoint Protection Manager - Remote Command Execution (Metasploit)↗2014-02-26

▶

Exploit-DB

Symantec Endpoint Protection Manager 11.0/12.0/12.1 - Remote Command Execution↗2014-02-23

▶

🔍Detection Rules

Suricata

ET WEB_SPECIFIC_APPS Symantec Endpoint Manager XXE RCE Attempt↗2014-02-26

▶