The ajaxswing webui in the management server in Symantec Critical System Protection (SCSP) 5.2.9 through MP6 and Symantec Data Center Security: Server Advanced (SDCS:SA) 6.0.x through 6.0 MP1 allows remote authenticated users to obtain sensitive server information via unspecified vectors.
References
Configurations
History
No history.
Information
Published : 2015-01-21 15:17
Updated : 2024-02-28 12:20
NVD link : CVE-2014-9225
Mitre link : CVE-2014-9225
CVE.ORG link : CVE-2014-9225
JSON object : View
Products Affected
symantec
- data_center_security
broadcom
- symantec_critical_system_protection
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor