Server-side Request Forgery (SSRF) Vulnerability in Symantec Endpoint Protection Manager (SEPM) 12.1 before RU6 MP5

Server-side Request Forgery (SSRF) Vulnerability in Symantec Endpoint Protection Manager (SEPM) 12.1 before RU6 MP5

CVE-2016-3647 · MEDIUM Severity

AV:N/AC:L/AU:S/C:N/I:P/A:N

Symantec Endpoint Protection Manager (SEPM) 12.1 before RU6 MP5 allows remote authenticated users to conduct server-side request forgery (SSRF) attacks, and trigger network traffic to arbitrary intranet hosts, via a crafted request.

Learn more about our Cis Benchmark Audit For Server Software.