Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Symantec — Vulnerabilities & Security Advisories 29

Browse all 29 CVE security advisories affecting Symantec. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Symantec operates primarily as a cybersecurity provider, offering endpoint protection, data loss prevention, and threat intelligence services to enterprise clients. Historically, its software portfolio has been associated with critical vulnerability classes, including remote code execution (RCE), cross-site scripting (XSS), and privilege escalation flaws. These issues often stem from complex legacy codebases and intricate integration points within its security agents. A notable incident involved the 2017 breach of its Symantec Endpoint Protection client, which allowed attackers to bypass security controls and install malicious software undetected. With 29 CVEs currently on record, the company faces ongoing scrutiny regarding its patch management and secure development lifecycle. These recurring vulnerabilities highlight the challenges inherent in maintaining robust security for widely deployed enterprise infrastructure, necessitating rigorous auditing and continuous improvement in its software engineering practices to mitigate future risks effectively.

Top products by Symantec: Norton Mobile Security for Android IT Management Suite Messaging Gateway Endpoint Encryption Symantec Endpoint Protection Norton Antivirus, Norton AntiVirus with Backup, Norton Security, Norton Security with Backup, Norton Internet Security, Norton 360 Carbon Black Cloud Windows Sensor Symantec Diagnostic Tool Data Loss Prevention Server Management Suite Deployment Solution Symantec Protection Engine Symantec Messaging Gateway Symantec VIP Enterprise Gateway Symantec Endpoint Encryption Norton Power Eraser Endpoint Detection and Response (SEDR) Critical System Protection (CSP) Norton AppLock SONAR Component VIP Access Desktop Norton Download Manager Norton App Lock
CVE IDTitleCVSSSeverityPublished
CVE-2025-3599 Symantec Endpoint Protection Elevation of Privilege — Symantec Endpoint ProtectionCWE-367 6.5 Medium2025-04-30
CVE-2024-11035 Carbon Black Cloud Windows Sensor Information Leak — Carbon Black Cloud Windows Sensor 2.5 Low2025-03-05
CVE-2025-0893 Broadcom Symantec Diagnostic Tool 安全漏洞 — Symantec Diagnostic Tool 7.8 High2025-02-19
CVE-2024-23617 Symantec Data Loss Prevention Buffer Overflow — Data Loss PreventionCWE-119 9.6 Critical2024-01-25
CVE-2024-23616 Symantec Server Management Suite Buffer Overflow — Server Management SuiteCWE-119 10.0 Critical2024-01-25
CVE-2024-23615 Symantec Messaging Gateway Buffer Overflow — Messaging GatewayCWE-119 10.0 Critical2024-01-25
CVE-2024-23614 Symantec Messaging Gateway Buffer Overflow — Messaging GatewayCWE-119 10.0 Critical2024-01-25
CVE-2024-23613 Symantec Deployment Solution Remote Code Execution — Deployment SolutionCWE-119 10.0 Critical2024-01-25
CVE-2023-23958 Symantec Protection Engine Hash Leak Vulnerability — Symantec Protection EngineCWE-200 6.8 Medium2023-09-26
CVE-2016-6592 Symantec Norton Download Manager 安全漏洞 — Norton Download Manager 7.8 -2020-01-14
CVE-2019-19548 Norton Power Eraser 安全漏洞 — Norton Power Eraser 7.8 -2020-01-14
CVE-2019-19547 Symantec Endpoint Detection and Response 跨站脚本漏洞 — Endpoint Detection and Response (SEDR) 6.1 -2020-01-13
CVE-2016-5311 多款Symantec产品本地提权漏洞 — Norton Antivirus, Norton AntiVirus with Backup, Norton Security, Norton Security with Backup, Norton Internet Security, Norton 360 7.8 -2020-01-09
CVE-2016-6585 Symantec Norton Mobile Security for Android 输入验证错误漏洞 — Norton Mobile Security for Android 5.9 -2020-01-08
CVE-2016-6587 Symantec Norton Mobile Security for Android 信息泄露漏洞 — Norton Mobile Security for Android 5.5 -2020-01-08
CVE-2016-6586 Symantec Norton Mobile Security 输入验证错误漏洞 — Norton Mobile Security for Android 4.0 -2020-01-08
CVE-2016-6588 Symantec IT Management Suite 跨站脚本漏洞 — IT Management Suite 5.4 -2020-01-08
CVE-2016-6589 Symantec IT Management Suite 输入验证错误漏洞 — IT Management Suite 5.5 -2020-01-08
CVE-2016-6590 多款Symantec产品安全漏洞 — IT Management Suite 8.4 -2020-01-08
CVE-2016-6591 Symantec Norton App Lock 安全漏洞 — Norton App Lock 7.1 -2020-01-08
CVE-2016-6593 Symantec VIP Access Desktop 代码问题漏洞 — VIP Access Desktop 7.8 -2020-01-08
CVE-2019-18374 Symantec Critical System Protection 授权问题漏洞 — Critical System Protection (CSP) 8.8 -2019-11-25
CVE-2019-18373 Symantec Norton App Lock 安全漏洞 — Norton AppLock 5.6 -2019-11-18
CVE-2019-12752 Symantec SONAR 安全漏洞 — SONAR Component 6.0 -2019-11-01
CVE-2019-9699 Symantec Messaging Gateway 信息泄露漏洞 — Symantec Messaging Gateway 5.7 -2019-10-24
CVE-2019-9703 Symantec Endpoint Encryption 权限许可和访问控制问题漏洞 — Endpoint Encryption 7.8 -2019-07-01
CVE-2019-9702 Symantec Endpoint Encryption 权限许可和访问控制问题漏洞 — Endpoint Encryption 7.8 -2019-07-01
CVE-2019-9694 Symantec Endpoint Encryption 权限许可和访问控制问题漏洞 — Symantec Endpoint Encryption 7.8 -2019-04-10
CVE-2019-9696 Symantec VIP Enterprise Gateway 跨站脚本漏洞 — Symantec VIP Enterprise Gateway 6.1 -2019-04-09

This page lists every published CVE security advisory associated with Symantec. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.