3 matches found
CVE-2020-5836
Symantec Endpoint Protection, prior to 14.3, can potentially reset the ACLs on a file as a limited user while Symantec Endpoint Protection's Tamper Protection feature is disabled...
Symantec Endpoint Protection Client < 14.3 Multiple Vulnerabilities (SYMSA1762)
The version of Symantec Endpoint Protection SEP Client installed on the remote host is prior to 14.3. It is therefore affected by the following vulnerabilities: - An elevation of privilege vulnerability exists. An authenticated, local attacker can exploit this by resetting ACLs on a file as a...
CVE-2020-5836
CVE-2020-5836 affects Symantec Endpoint Protection (Windows Endpoint) prior to 14.3. The vulnerability allows a limited (authenticated, local) user to reset ACLs on a file when Tamper Protection is disabled, resulting in elevation of privilege. The issue is documented in multiple sources with the...