Vulnerabilities > Norton > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-01-14 | CVE-2019-19548 | Unspecified vulnerability in Norton Power Eraser Norton Power Eraser, prior to 5.3.0.67, may be susceptible to a privilege escalation vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated access to resources that are normally protected from an application or user. | 4.6 |
| 2019-12-05 | CVE-2019-19546 | Information Exposure vulnerability in Norton Password Manager Norton Password Manager, prior to 6.6.2.5, may be susceptible to an information disclosure issue, which is a type of vulnerability whereby there is an unintentional disclosure of information to an actor that is not explicitly authorized to have access to that information. | 4.0 |
| 2019-12-05 | CVE-2019-19545 | Origin Validation Error vulnerability in Norton Password Manager Norton Password Manager, prior to 6.6.2.5, may be susceptible to a cross origin resource sharing (CORS) vulnerability, which is a type of issue that allows restricted resources on a web page to be requested from another domain outside the domain from which the first resource was served. | 6.5 |
| 2019-12-05 | CVE-2019-18381 | Origin Validation Error vulnerability in Norton Password Manager Norton Password Manager, prior to 6.6.2.5, may be susceptible to a cross origin resource sharing (CORS) vulnerability, which is a type of issue that allows restricted resources on a web page to be requested from another domain outside the domain from which the first resource was served. | 6.5 |
| 2017-11-22 | CVE-2017-15528 | Improper Certificate Validation vulnerability in Norton Install Norton Security Prior to v 7.6, the Install Norton Security (INS) product can be susceptible to a certificate spoofing vulnerability, which is a type of attack whereby a maliciously procured certificate binds the public key of an attacker to the domain name of the target. | 4.3 |
| 2017-09-28 | CVE-2017-13676 | Code Injection vulnerability in Norton Remove & Reinstall Norton Remove & Reinstall can be susceptible to a DLL preloading vulnerability. | 4.4 |