CVE-2019-19545

Published: Dec 5, 2019Modified: Nov 21, 2024

6.3

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Exploitability: 2.8 / Impact: 3.4

Source: NVD

Description

Norton Password Manager, prior to 6.6.2.5, may be susceptible to a cross origin resource sharing (CORS) vulnerability, which is a type of issue that allows restricted resources on a web page to be requested from another domain outside the domain from which the first resource was served.

Affected (1)

Products: Norton: Password Manager

1 product

Password Manager

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Norton Password Manager	Before 6.6.2.5

Related CWEs

Origin Validation Error

The product does not properly verify that the source of data or communication is valid.

References (2)

https://support.symantec.com/us/en/article.SYMSA1499.html

Source: secure@symantec.com

Vendor Advisory

https://support.symantec.com/us/en/article.SYMSA1499.html

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.