Vulnerabilities > Symantec > Encryption Management Server > High

DATE CVE VULNERABILITY TITLE RISK
2018-08-20 CVE-2018-5243 Resource Exhaustion vulnerability in Symantec Encryption Management Server
The Symantec Encryption Management Server (SEMS) product, prior to version 3.4.2 MP1, may be susceptible to a denial of service (DoS) exploit.
network
low complexity
symantec CWE-400
7.5
2016-02-18 CVE-2015-8150 Permissions, Privileges, and Access Controls vulnerability in Symantec Encryption Management Server 3.3.2
Symantec Encryption Management Server (SEMS) 3.3.2 before MP12 allows local users to obtain root access by modifying a batch file.
local
low complexity
symantec CWE-264
7.8
2016-02-18 CVE-2015-8149 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Symantec Encryption Management Server 3.3.2
The LDAP service in Symantec Encryption Management Server (SEMS) 3.3.2 before MP12 allows remote attackers to cause a denial of service (heap memory corruption and service outage) via crafted requests.
network
low complexity
symantec CWE-119
7.5
2016-02-18 CVE-2015-8148 Information Exposure vulnerability in Symantec Encryption Management Server 3.3.2
The LDAP service in Symantec Encryption Management Server (SEMS) 3.3.2 before MP12 allows remote attackers to obtain sensitive information about administrator accounts via a modified request.
network
low complexity
symantec CWE-200
7.5