3 matches found
CVE-2022-25631
CVE-2022-25631 affects Symantec Endpoint Protection (SEP) Client/Endpoint Protection before 14.3 RU6 (14.3.9210.6000). The vulnerability is described as a local elevation of privilege, arising from insufficient access control that could allow a privileged attacker to compromise the SEP client. Pu...
CVE-2022-37016
CVE-2022-37016 affects Symantec Endpoint Protection (Windows) agent. The NVD entry describes a Privilege Escalation with HIGH impact (C/H/I/A all high), CVSSv3.1 base score 9.8, using NETWORK attack vector, LOW complexity, no privileges and no user interaction required. Connected records consiste...
CVE-2022-37017
CVE-2022-37017 affects Symantec Endpoint Protection Client for Windows prior to 14.3 RU6 (and 14.3 RU5 Patch 1). The vulnerability targets UI Password protection and Policy Import/Export Password protection, allowing a security control bypass. Root-cause details in public disclosures describe a b...