10 matches found
CVE-2019-9703
CVE-2019-9703 (and CVE-2019-9702) affect Symantec Endpoint Encryption (SEE) prior to version 11.3.0, introducing local privilege-escalation weaknesses. An authenticated, local attacker could gain elevated access to the system by exploiting these vulnerabilities. Symantec released SEE 11.3.0 to ad...
CVE-2019-9702
Symantec Endpoint Encryption (SEE) prior to version 11.3.0 is affected by privilege-escalation vulnerabilities identified as CVE-2019-9702 and CVE-2019-9703 (as documented in related advisories). The issues allow a local attacker to gain elevated privileges. A fix is available: upgrade to SEE 11....
CVE-2015-8156
Summary of CVE-2015-8156 from provided documents The issue affects Symantec Endpoint Encryption (SEE), specifically the Drive Encryption/EEDService component in SEE 11.x before 11.1.1. A local attacker could exploit an unquoted Windows search path vulnerability to escalate privileges by placing a...
CVE-2017-13683
Symantec Endpoint Encryption (SEE) prior to 11.1.3HF3 contains a kernel memory leak vulnerability (memory resource leak). The issue is addressed in SEE 11.1.3HF3 and in Symantec Encryption Desktop (SED) 10.4.1 MP2HF1; updating to these versions mitigates the vulnerability. CNVD/SEC sources descri...
CVE-2017-15525
CVE-2017-15525 affects Symantec Endpoint Encryption (SEE) components prior to version 11.1.3 MP1. The connected Nessus entry specifies that the drive-encryption client on Windows installed before 11.1.3 MP1 is vulnerable to a denial-of-service (DoS) condition and a NULL pointer dereference that c...
CVE-2017-13675
CVE-2017-13675 is a DoS vulnerability affecting Symantec Endpoint Encryption (SEE) prior to 11.1.3HF2. The DoS can be triggered remotely to disrupt services on a host within a network. Related connected sources corroborate that SEE/SED were addressed by updates: SEE 11.1.3HF3 and SED 10.4.1 MP2HF...
CVE-2017-15526
Symantec Endpoint Encryption (SEE) Drive Encryption client prior to 11.1.3 MP1 is affected by a null pointer dereference that can lead to privilege escalation and a denial of service. The issue affects SEE Drive Encryption Client on Windows; root cause is a null pointer dereference/backreference ...
CVE-2019-9694
Symantec Endpoint Encryption (SEE) is affected before version 11.2.1 MP1 by a privilege-escalation vulnerability (CVE-2019-9694). The issue affects SEE installations that are used to manage BitLocker, with local attack vector and elevated privileges as described in CVSS metrics (base score 7.8 CV...
CVE-2016-6590
The CVE-2016-6590 issue is a local privilege-escalation caused by loading DLLs during boot/reboot without absolute paths in multiple Symantec products. Affected: IT Management Suite 8.0 (before HF4), ITMS 7.6 (before HF7); Ghost Solution Suite 3.1 (before MP4); Endpoint Virtualization 7.x (before...
CVE-2015-6556
Symantec Endpoint Encryption (SEE) up to version 11.0 is affected by CVE-2015-6556 due to EACommunicatorSrv.exe in the Framework Service allowing an authenticated remote user to trigger a memory dump and access credentials stored on the client. The issue is documented with a low CVSS v2 base scor...