Lucene search

[email protected]CVE-2015-6556

HistoryDec 18, 2015 - 11:59 a.m.

CVE-2015-6556

2015-12-1811:59:05

CWE-200

[email protected]

web.nvd.nist.gov

symantec

endpoint encryption

vulnerability

cve-2015-6556

eacommunicatorsrv.exe

framework service

memory dump

nvd

6.4 Medium

AI Score

Confidence

Low

2.3 Low

CVSS2

Access Vector

Access Complexity

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:A/AC:M/Au:S/C:P/I:N/A:N

0.001 Low

EPSS

Percentile

41.7%

JSON

EACommunicatorSrv.exe in the Framework Service in the client in Symantec Endpoint Encryption (SEE) before 11.1.0 allows remote authenticated users to discover credentials by triggering a memory dump.

Affected configurations

NVD

Node

symantecendpoint_encryptionRange≤11.0

CPENameOperatorVersion
symantec:endpoint_encryptionsymantec endpoint encryptionle11.0

CPE	Name	Operator	Version
symantec:endpoint_encryption	symantec endpoint encryption	le	11.0

References

www.securityfocus.com/bid/78803

www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20151214_00

6.4 Medium

AI Score

Confidence

Low

2.3 Low

CVSS2

Access Vector

Access Complexity

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:A/AC:M/Au:S/C:P/I:N/A:N

0.001 Low

EPSS

Percentile

41.7%

JSON

Related for CVE-2015-6556

nvd1 prion1 openvas1 cvelist1 symantec1