VYPR
Medium severity5.3NVD Advisory· Published Jun 30, 2016· Updated Jun 17, 2026

CVE-2016-5306

CVE-2016-5306

Description

Symantec Endpoint Protection Manager (SEPM) 12.1 before RU6 MP5 does not properly implement the HSTS protection mechanism, which makes it easier for remote attackers to obtain sensitive information by sniffing the network for unintended HTTP traffic on port 8445.

Affected products

2
  • cpe:2.3:a:symantec:endpoint_protection_manager:*:mp4:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:symantec:endpoint_protection_manager:*:mp4:*:*:*:*:*:*range: <=12.1.6
    • (no CPE)range: <12.1 RU6 MP5

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.