CVE-2018-18365 — Norton Password Manager vulnerability

3 documents3 sources

Severity

7.5HIGHNVD

EPSS

0.3%

top 46.56%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Symantec Norton Password Manager

Timeline

PublishedApr 9

Latest updateMay 13

Description

Norton Password Manager may be susceptible to an address spoofing issue. This type of issue may allow an attacker to disguise their origin IP address in order to obfuscate the source of network traffic.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages2 packages

▶NVDsymantec/norton_password_manager< 6.2.0.1078+1

▶CVEListV5symantec/norton_password_managerPrior to 6.2.0.1078 (Android) & 6.2.309 (iOS)

🔴Vulnerability Details

GHSA

GHSA-j648-5j34-5pmr: Norton Password Manager may be susceptible to an address spoofing issue↗2022-05-13

▶

CVEList

CVE-2018-18365: Norton Password Manager may be susceptible to an address spoofing issue↗2019-04-09

▶