| CVE ID | Description | Severity | Patched in later build? | |--------|-------------|----------|--------------------------| | CVE-2017-15535 | Unauthenticated arbitrary file deletion via /servlet/ConsoleServlet | High | Yes (14.0.2417+) | | CVE-2018-18365 | Information disclosure via log file permissions | Medium | Yes (14.2.x) | | CVE-2019-18268 | Hardcoded SQL credentials in installer script | Critical | Yes (14.2.1031) |
If you are drafting a technical bulletin, knowledge base article, or a community update, here is a structured breakdown you can use: Symantec Endpoint Protection Manager 14.0.2415
Ensure any third-party HIPS or firewalls are disabled during the installation to prevent driver conflicts. | CVE ID | Description | Severity | Patched in later build
This was a major selling point for the v14 series. 14.0.2415 includes robust protections against memory-based attacks (often used in fileless malware). It can detect and block common exploitation techniques such as: knowledge base article