CVE-2016-2206

MEDIUM Year: 2016
CVSS v3 Score
5.7
Medium
CVSS v2 Score
3.3
Low
Weakness Type
CWE-264
View all →

Vulnerability Description

The management console in Symantec Workspace Streaming (SWS) 7.5.x before 7.5 SP1 HF9 and 7.6.0 before 7.6 HF5 and Symantec Workspace Virtualization (SWV) 7.5.x before 7.5 SP1 HF9 and 7.6.0 before 7.6 HF5 allows remote authenticated users to read arbitrary files by modifying the file-download configuration file.

Related Vulnerabilities

CVE-2017-12351

MEDIUM
CVSS:5.7(Medium)

A vulnerability in the guest shell feature of Cisco NX-OS System Software could allow an authenticated, local attacker to read and send packets outside the scope of the guest shell container. An attac...

CWE-2642017

CVE-2016-5847

MEDIUM
CVSS:5.8(Medium)

SAP SAPCAR allows local users to change the permissions of arbitrary files and consequently gain privileges via a hard link attack on files extracted from an archive, possibly related to SAP Security ...

CWE-2642016

CVE-2017-6620

MEDIUM
CVSS:5.8(Medium)

A vulnerability in the remote management access control list (ACL) feature of the Cisco CVR100W Wireless-N VPN Router could allow an unauthenticated, remote attacker to bypass the remote management AC...

CWE-2642017

CVE-2019-1969

MEDIUM
CVSS:5.8(Medium)

A vulnerability in the implementation of the Simple Network Management Protocol (SNMP) Access Control List (ACL) feature of Cisco NX-OS Software could allow an unauthenticated, remote attacker to perf...

CWE-2642019

CVE-2019-1978

MEDIUM
CVSS:5.8(Medium)

A vulnerability in the stream reassembly component of Cisco Firepower Threat Defense Software, Cisco FirePOWER Services Software for ASA, and Cisco Firepower Management Center Software could allow an ...

CWE-2642019

CVE-2019-1980

MEDIUM
CVSS:5.8(Medium)

A vulnerability in the protocol detection component of Cisco Firepower Threat Defense Software, Cisco FirePOWER Services Software for ASA, and Cisco Firepower Management Center Software could allow an...

CWE-2642019