Browse all 29 CVE security advisories affecting Symantec. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Symantec operates primarily as a cybersecurity provider, offering endpoint protection, data loss prevention, and threat intelligence services to enterprise clients. Historically, its software portfolio has been associated with critical vulnerability classes, including remote code execution (RCE), cross-site scripting (XSS), and privilege escalation flaws. These issues often stem from complex legacy codebases and intricate integration points within its security agents. A notable incident involved the 2017 breach of its Symantec Endpoint Protection client, which allowed attackers to bypass security controls and install malicious software undetected. With 29 CVEs currently on record, the company faces ongoing scrutiny regarding its patch management and secure development lifecycle. These recurring vulnerabilities highlight the challenges inherent in maintaining robust security for widely deployed enterprise infrastructure, necessitating rigorous auditing and continuous improvement in its software engineering practices to mitigate future risks effectively.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2019-9703 | Symantec Endpoint Encryption 权限许可和访问控制问题漏洞 — Endpoint Encryption | 7.8 | - | 2019-07-01 |
| CVE-2019-9702 | Symantec Endpoint Encryption 权限许可和访问控制问题漏洞 — Endpoint Encryption | 7.8 | - | 2019-07-01 |
This page lists every published CVE security advisory associated with Symantec. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.