CVE-2018-18365
First published: Tue Apr 09 2019(Updated: )
Norton Password Manager may be susceptible to an address spoofing issue. This type of issue may allow an attacker to disguise their origin IP address in order to obfuscate the source of network traffic.
Credit: secure@symantec.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Norton Password Manager | <6.2.0.1078 | |
| Norton Password Manager | <6.2.309 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2018-18365?
CVE-2018-18365 is considered a moderate severity vulnerability due to its potential for address spoofing.
How do I fix CVE-2018-18365?
To mitigate CVE-2018-18365, update Norton Password Manager to the latest version beyond 6.2.0.1078 for Android and 6.2.309 for iOS.
What is the impact of CVE-2018-18365?
CVE-2018-18365 may allow an attacker to disguise their IP address, obscuring the true source of network traffic.
Which versions of Norton Password Manager are affected by CVE-2018-18365?
CVE-2018-18365 affects Norton Password Manager versions prior to 6.2.0.1078 for Android and 6.2.309 for iPhone OS.
Is there a workaround for CVE-2018-18365?
The best workaround for CVE-2018-18365 is to immediately upgrade to the latest version of Norton Password Manager.
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/severity
- agent/author
- agent/references
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/symantec
- canonical/norton password manager