Browse all 71 CVE security advisories affecting Symantec Corporation. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Symantec Corporation operates primarily as a cybersecurity firm providing endpoint protection, data loss prevention, and threat intelligence services. With 71 recorded Common Vulnerabilities and Exposures (CVEs), the company’s historical attack surface has frequently included remote code execution, cross-site scripting, and privilege escalation flaws. These vulnerabilities often stemmed from complex enterprise software architectures and legacy components within its Norton and Endpoint Protection suites. Notably, the 2014 breach involving the theft of customer data from its Symantec Enterprise Vault and other products highlighted significant gaps in internal security controls, resulting in widespread regulatory scrutiny and reputational damage. The incident underscored the risks associated with centralized data repositories and the necessity for rigorous third-party vendor management. Despite these challenges, Symantec Corporation continues to refine its security posture, aiming to mitigate future risks through enhanced encryption and access controls.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2019-18380 | Symantec Industrial Control System Protection 安全漏洞 — Industrial Control System Protection (ICSP) | 6.5 | - | 2019-12-09 |
| CVE-2019-12755 | Symantec Norton Password Manager for Android 信息泄露漏洞 — Norton Password Manager | 5.5 | - | 2019-09-17 |
| CVE-2019-9697 | Symantec Management Center 信息泄露漏洞 — Management Center (MC) | 6.5 | - | 2019-08-29 |
| CVE-2019-12753 | Symantec Reporter web UI 信息泄露漏洞 — Symantec Reporter | 4.9 | - | 2019-08-29 |
| CVE-2019-12754 | Symantec My VIP portal 跨站脚本漏洞 — My VIP Portal | 5.4 | - | 2019-08-29 |
| CVE-2018-18371 | Symantec Advanced Secure Gateway和ProxySG 加密问题漏洞 — Symantec Advanced Secure Gateway (ASG) | 7.5 | - | 2019-08-29 |
| CVE-2018-18370 | Symantec Advanced Secure Gateway和ProxySG 跨站脚本漏洞 — Symantec Advanced Secure Gateway (ASG) | 6.1 | - | 2019-08-29 |
| CVE-2018-18367 | Symantec Endpoint Protection Manager 代码问题漏洞 — Symantec Endpoint Protection Manager | 7.8 | - | 2019-04-25 |
| CVE-2018-18366 | Symantec Endpoint Protection 信息泄露漏洞 — Norton Security | 5.5 | - | 2019-04-25 |
| CVE-2018-12244 | Symantec Endpoint Protection 输入验证错误漏洞 — Symantec Endpoint Protection (Mac Client) | 6.3 | - | 2019-04-25 |
| CVE-2018-18369 | Symantec Norton Security和Symantec Endpoint Protection Small Business Edition 代码问题漏洞 — Norton Security | 7.8 | - | 2019-04-25 |
| CVE-2018-18364 | Symantec Ghost Solution Suite 安全漏洞 — Ghost Solution Suite (GSS) | 7.8 | - | 2019-02-08 |
| CVE-2018-12237 | Symantec Reporter CLI 操作系统命令注入漏洞 — Symantec Reporter | 7.2 | - | 2019-01-24 |
| CVE-2018-18363 | Symantec Norton App Lock for Android 安全漏洞 — Norton App Lock | 6.1 | - | 2019-01-24 |
| CVE-2018-18362 | Symantec Norton Password Manager for Android 跨站脚本漏洞 — Norton Password Manager | 6.1 | - | 2018-12-06 |
| CVE-2018-12239 | 多款Symantec产品安全漏洞 — Norton; Symantec Endpoint Protection (SEP); Symantec Endpoint Protection Small Business Edition (SEP SBE); Symantec Endpoint Protection Cloud (SEP Cloud) | 6.6 | - | 2018-11-29 |
| CVE-2018-12238 | 多款Symantec产品安全漏洞 — Norton; Symantec Endpoint Protection (SEP); Symantec Endpoint Protection Small Business Edition (SEP SBE); Symantec Endpoint Protection Cloud (SEP Cloud) | 6.6 | - | 2018-11-29 |
| CVE-2018-12245 | Symantec Endpoint Protection 安全漏洞 — Symantec Endpoint Protection (SEP) | 7.8 | - | 2018-11-29 |
| CVE-2018-12241 | Symantec Security Analytics 跨站脚本漏洞 — Symantec Security Analytics (SA) | 6.1 | - | 2018-11-27 |
| CVE-2018-12246 | Symantec Web Isolation 跨站脚本漏洞 — Symantec Web Isolation | 6.1 | - | 2018-10-22 |
| CVE-2018-12243 | Symantec Messaging Gateway 安全漏洞 — Symantec Messaging Gateway | 9.1 | - | 2018-09-19 |
| CVE-2018-12242 | Symantec Messaging Gateway 安全漏洞 — Symantec Messaging Gateway | 8.8 | - | 2018-09-19 |
| CVE-2018-12240 | Symantec Norton Identity Safe 权限许可和访问控制问题漏洞 — Norton Identity Safe for Android | 5.9 | - | 2018-08-29 |
| CVE-2018-5238 | Symantec Norton Power Eraser和SymDiag 安全漏洞 — Norton Power Eraser | 7.8 | - | 2018-08-22 |
| CVE-2018-5235 | Symantec Norton Utilities 代码问题漏洞 — Norton Utilities | 6.3 | - | 2018-08-22 |
| CVE-2018-5243 | Symantec Encryption Management Server 安全漏洞 — Symantec Encryption Management Server (SEMS) | 6.5 | - | 2018-08-20 |
| CVE-2018-5240 | Symantec Management Agent Inventory Plugin 权限许可和访问控制问题漏洞 — Inventory Plugin for Symantec Management Agent | 8.0 | - | 2018-07-25 |
| CVE-2018-5239 | Symantec Norton App Lock 安全漏洞 — Norton App Lock | 6.1 | - | 2018-07-16 |
| CVE-2018-5237 | Symantec Endpoint Protection 权限许可和访问控制问题漏洞 — Symantec Endpoint Protection | 8.8 | - | 2018-06-20 |
| CVE-2018-5236 | Symantec Endpoint Protection 竞争条件漏洞 — Symantec Endpoint Protection | 6.3 | - | 2018-06-20 |
This page lists every published CVE security advisory associated with Symantec Corporation. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.