Vulnerabilities > Symantec > Norton Password Manager

DATE CVE VULNERABILITY TITLE RISK
2019-09-17 CVE-2019-12755 Information Exposure vulnerability in Symantec Norton Password Manager
Norton Password Manager, prior to 6.5.0.2104, may be susceptible to an information disclosure issue, which is a type of vulnerability whereby there is an unintentional disclosure of information to an actor that is not explicitly authorized to have access to that information.
local
low complexity
symantec CWE-200
2.1
2019-04-09 CVE-2018-18365 Unspecified vulnerability in Symantec Norton Password Manager
Norton Password Manager may be susceptible to an address spoofing issue.
network
low complexity
symantec
5.0
2018-12-06 CVE-2018-18362 Cross-site Scripting vulnerability in Symantec Norton Password Manager
Norton Password Manager for Android (formerly Norton Identity Safe) may be susceptible to a cross site scripting (XSS) exploit, which is a type of issue that can enable attackers to inject client-side scripts into web pages viewed by other users.
network
symantec CWE-79
4.3
2018-08-29 CVE-2018-12240 Use of Hard-coded Credentials vulnerability in Symantec Norton Identity Safe
The Norton Identity Safe product prior to 5.3.0.976 may be susceptible to a privilege escalation issue via a hard coded IV, which is a type of vulnerability that can potentially increase the likelihood of encrypted data being recovered without adequate credentials.
network
symantec CWE-798
4.3