VYPR
Unrated severityNVD Advisory· Published Aug 1, 2015· Updated Jun 17, 2026

CVE-2015-1490

CVE-2015-1490

Description

Directory traversal vulnerability in the management console in Symantec Endpoint Protection Manager (SEPM) 12.1 before 12.1-RU6-MP1 allows remote authenticated users to read arbitrary files via a relative pathname in a client installation package.

Affected products

2
  • cpe:2.3:a:symantec:endpoint_protection_manager:12.1.0:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:symantec:endpoint_protection_manager:12.1.0:*:*:*:*:*:*:*
    • (no CPE)range: >=12.1 prior to 12.1-RU6-MP1

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.