CyberSec.Space Logo
Back to CVE Browser

CVE-2014-1649

HIGH
7.9
CVSS Severity Score
EPSS Score0.1430%
EPSS Percentile31.69th
PublishedMay 16, 2014
Last ModifiedMay 6, 2026

Vulnerability Description

The server in Symantec Workspace Streaming (SWS) before 7.5.0.749 allows remote attackers to access files and functionality by sending a crafted XMLRPC request over HTTPS.

Affected Platforms (CPE)

πŸ“¦
Symantec

Workspace Streaming

<= 7.5.0
πŸ“¦
Symantec

Workspace Streaming

= 6.1
πŸ“¦
Symantec

Workspace Streaming

= 6.1
πŸ“¦
Symantec

Workspace Streaming

= 6.1
πŸ“¦
Symantec

Workspace Streaming

= 6.1
πŸ“¦
Symantec

Workspace Streaming

= 6.1

References & Advisories

πŸ”— http://www.exploit-db.com/exploits/33521
πŸ”— http://www.securityfocus.com/bid/67189
πŸ”— http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20140512_00
πŸ”— http://zerodayinitiative.com/advisories/ZDI-14-127/
πŸ”— http://www.exploit-db.com/exploits/33521
πŸ”— http://www.securityfocus.com/bid/67189
πŸ”— http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20140512_00
πŸ”— http://zerodayinitiative.com/advisories/ZDI-14-127/

Related Vulnerabilities

CVE-2008-43899.3

Symantec AppStream 5.2.x and Symantec Workspace Streaming (SWS) 6.1.x before 6.1 SP4 do not properly perform authentication, which...

CVE-2015-14846.9

Unquoted Windows search path vulnerability in the agent in Symantec Workspace Streaming (SWS) 6.1 before SP8 MP2 HF7 and 7.5 befor...

CVE-2016-22055.7

Directory traversal vulnerability in the file-download configuration file in the management console in Symantec Workspace Streamin...

CVE-2016-22065.7

The management console in Symantec Workspace Streaming (SWS) 7.5.x before 7.5 SP1 HF9 and 7.6.0 before 7.6 HF5 and Symantec Worksp...