Vulnerabilities > Symantec > Norton Password Manager > Medium

DATE CVE VULNERABILITY TITLE RISK
2019-09-17 CVE-2019-12755 Unspecified vulnerability in Symantec Norton Password Manager
Norton Password Manager, prior to 6.5.0.2104, may be susceptible to an information disclosure issue, which is a type of vulnerability whereby there is an unintentional disclosure of information to an actor that is not explicitly authorized to have access to that information.
local
low complexity
symantec
5.5
2018-12-06 CVE-2018-18362 Cross-site Scripting vulnerability in Symantec Norton Password Manager
Norton Password Manager for Android (formerly Norton Identity Safe) may be susceptible to a cross site scripting (XSS) exploit, which is a type of issue that can enable attackers to inject client-side scripts into web pages viewed by other users.
network
low complexity
symantec CWE-79
6.1
2018-08-29 CVE-2018-12240 Use of Hard-coded Credentials vulnerability in Symantec Norton Password Manager
The Norton Identity Safe product prior to 5.3.0.976 may be susceptible to a privilege escalation issue via a hard coded IV, which is a type of vulnerability that can potentially increase the likelihood of encrypted data being recovered without adequate credentials.
network
high complexity
symantec CWE-798
5.9