Endpoint detection and response

This hub aggregates every CVE we track for Endpoint detection and response, a product in the security products space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 10 most recently published vulnerabilities affecting Endpoint detection and response.

• CVE-2023-29147In Malwarebytes EDR 1.0.11 for Linux, it is possible to bypass the detection layers that depend on inode identifiers, because an identifier may be reused when a file is replaced, and because two fi...5.5Jun 30, 2023
• CVE-2023-29145The Malwarebytes EDR 1.0.11 for Linux driver doesn't properly ensure whitelisting of executable libraries loaded by executable files, allowing arbitrary code execution. The attacker can set LD_LIBR...7.8Jun 30, 2023
• CVE-2020-25502Cybereason EDR version 19.1.282 and above, 19.2.182 and above, 20.1.343 and above, and 20.2.X and above has a DLL hijacking vulnerability, which could allow a local attacker to execute code with el...7.8Jan 20, 2023
• CVE-2022-37015Symantec Endpoint Detection and Response (SEDR) Appliance, prior to 4.7.0, may be susceptible to a privilege escalation vulnerability, which is a type of issue whereby an attacker may attempt to co...9.8Nov 8, 2022
• CVE-2020-12593Symantec Endpoint Detection & Response, prior to 4.5, may be susceptible to an information disclosure issue, which is a type of vulnerability that could potentially allow unauthorized access to data.7.5Nov 18, 2020
• CVE-2020-5839Symantec Endpoint Detection And Response, prior to 4.4, may be susceptible to an information disclosure issue, which is a type of vulnerability that could potentially allow unauthorized access to d...7.5Jul 8, 2020
• CVE-2020-7287Privilege Escalation vulnerability in EDR for Linux7.8May 8, 2020
• CVE-2020-7288Privilege Escalation vulnerability in EDR for Mac7.8May 8, 2020
• CVE-2020-7286Privilege Escalation vulnerability in EDR for Windows7.8May 8, 2020
• CVE-2019-19547Symantec Endpoint Detection and Response (SEDR), prior to 4.3.0, may be susceptible to a cross site scripting (XSS) issue. XSS is a type of issue that can enable attackers to inject client-side scr...6.1Jan 13, 2020