CVE-2016-5306

Symantec Endpoint Protection Manager (SEPM) 12.1 before RU6 MP5 does not properly implement the HSTS protection mechanism, which makes it easier for remote attackers to obtain sensitive information by sniffing the network for unintended HTTP traffic on port 8445.
Configurations

Configuration 1 (hide)

cpe:2.3:a:symantec:endpoint_protection_manager:*:mp4:*:*:*:*:*:*

History

No history.

Information

Published : 2016-06-30 23:59

Updated : 2024-02-28 15:21


NVD link : CVE-2016-5306

Mitre link : CVE-2016-5306

CVE.ORG link : CVE-2016-5306


JSON object : View

Products Affected

symantec

  • endpoint_protection_manager
CWE
CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

CWE-254

7PK - Security Features