CVE-2010-0114

N/A Unknown
Published: December 22, 2010 Modified: April 29, 2026
View on NVD

Description

fw_charts.php in the reporting module in the Manager (aka SEPM) component in Symantec Endpoint Protection (SEP) 11.x before 11 RU6 MP2 allows remote attackers to bypass intended restrictions on report generation, overwrite arbitrary PHP scripts, and execute arbitrary code via a crafted request.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory
http://secunia.com/advisories/42643
Source: cve@mitre.org
Vendor Advisory
http://securitytracker.com/id?1024900
Source: cve@mitre.org
http://www.securityfocus.com/bid/45372
Source: cve@mitre.org
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2010&suid=20101215_00
Source: cve@mitre.org
http://www.vupen.com/english/advisories/2010/3252
Source: cve@mitre.org
Vendor Advisory
http://www.zerodayinitiative.com/advisories/ZDI-10-291/
Source: cve@mitre.org
https://exchange.xforce.ibmcloud.com/vulnerabilities/64118
Source: cve@mitre.org
http://secunia.com/advisories/42643
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
http://securitytracker.com/id?1024900
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.securityfocus.com/bid/45372
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2010&suid=20101215_00
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.vupen.com/english/advisories/2010/3252
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
http://www.zerodayinitiative.com/advisories/ZDI-10-291/
Source: af854a3a-2127-422b-91ae-364da2661108
https://exchange.xforce.ibmcloud.com/vulnerabilities/64118
Source: af854a3a-2127-422b-91ae-364da2661108

14 reference(s) from NVD

Quick Stats

CVSS v3 Score
N/A / 10.0
EPSS (Exploit Probability)
5.0%
91th percentile
Exploitation Status
Not in CISA KEV

Weaknesses (CWE)

CWE-20

Affected Vendors

symantec

Related CVEs

CVE-2026-57700 10.0
CVE-2026-56790 7.3
CVE-2026-56789 6.5
CVE-2026-56788 4.4
CVE-2026-56787 6.5