Vulnerabilities > Symantec > Norton Mobile Security

DATE CVE VULNERABILITY TITLE RISK
2020-01-08 CVE-2016-6585 Improper Input Validation vulnerability in Symantec Norton Mobile Security
A Denial of Service vulnerability exists in Symantec Norton Mobile Security for Android prior to 3.16, which could let a remote malicious user conduct a man-in-the-middle attack via specially crafted JavaScript.
network
high complexity
symantec CWE-20
5.3
5.3
2020-01-08 CVE-2016-6587 Information Exposure vulnerability in Symantec Norton Mobile Security
An Information Disclosure vulnerability exists in the mid.dat file stored on the SD card in Symantec Norton Mobile Security for Android before 3.16, which could let a local malicious user obtain sensitive information.
local
low complexity
symantec CWE-200
5.5
5.5
2020-01-08 CVE-2016-6586 Improper Input Validation vulnerability in Symantec Norton Mobile Security
A security bypass vulnerability exists in Symantec Norton Mobile Security for Android before 3.16, which could let a malicious user conduct a man-in-the-middle via specially crafted JavaScript to add arbitrary URLs to the URL whitelist.
network
high complexity
symantec CWE-20
3.7
3.7