CVE-2016-3649

CWE-200Information Exposure3 documents3 sources
Severity
4.3MEDIUM
EPSS
0.3%
top 51.19%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Symantec Endpoint Protection Manager
Timeline
PublishedJun 30
Latest updateMay 17

Description

Symantec Endpoint Protection Manager (SEPM) 12.1 before RU6 MP5 allows remote authenticated administrators to enumerate administrator accounts via modified GET requests.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:NExploitability: 2.8 | Impact: 1.4

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-m6v7-3j63-w78m: Symantec Endpoint Protection Manager (SEPM) 122022-05-17
CVEList
CVE-2016-3649: Symantec Endpoint Protection Manager (SEPM) 122016-06-30
CVE-2016-3649 (MEDIUM CVSS 4.3) | Symantec Endpoint Protection Manage | cvebase.io