Symantec Encryption Management Server — known CVE vulnerabilities
Every CVE whose affected-product data names Symantec Encryption Management Server, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (9)
CVE-2015-8151 — CVSS 9.1 (critical): Symantec Encryption Management Server (SEMS) 3.3.2 before MP12 allows remote authenticated users to execute arbitrary OS commands by…
CVE-2014-7288 — CVSS 9.0 (critical): Symantec PGP Universal Server and Encryption Management Server before 3.3.2 MP7 allow remote authenticated administrators to execute…
CVE-2015-8150 — CVSS 7.8 (high): Symantec Encryption Management Server (SEMS) 3.3.2 before MP12 allows local users to obtain root access by modifying a batch file.
CVE-2018-5243 — CVSS 7.5 (high): The Symantec Encryption Management Server (SEMS) product, prior to version 3.4.2 MP1, may be susceptible to a denial of service (DoS)…
CVE-2015-8148 — CVSS 7.5 (high): The LDAP service in Symantec Encryption Management Server (SEMS) 3.3.2 before MP12 allows remote attackers to obtain sensitive information…
CVE-2015-8149 — CVSS 7.5 (high): The LDAP service in Symantec Encryption Management Server (SEMS) 3.3.2 before MP12 allows remote attackers to cause a denial of service…
CVE-2014-7287 — CVSS 5.0 (medium): The key-management component in Symantec PGP Universal Server and Encryption Management Server before 3.3.2 MP7 allows remote attackers to…
CVE-2013-4674 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in the Web Email Protection component in Symantec Encryption Management Server (formerly Symantec…
CVE-2014-1643 — CVSS 4.0 (medium): The Web Email Protection component in Symantec Encryption Management Server (aka PGP Universal Server) before 3.3.2 allows remote…