Published: 11/02/2020 Updated: 21/07/2021

CVSS v2 Base Score: 3.6 | Impact Score: 4.9 | Exploitability Score: 3.9

CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8

VMScore: 321

Vector: AV:L/AC:L/Au:N/C:N/I:P/A:P

Symantec Endpoint Protection (SEP) and Symantec Endpoint Protection Small Business Edition (SEP SBE), before 14.2 RU2 MP1 and before 14.2.5569.2100 respectively, may be susceptible to an arbitrary file write vulnerability, which is a type of issue whereby an attacker is able to overwrite existing files on the resident system without proper privileges.

Vulnerable Product	Search on Vulmon	Subscribe to Product
symantec endpoint protection 11.0
symantec endpoint protection 12.1
symantec endpoint protection 14.0.0
symantec endpoint protection 14.0.1
symantec endpoint protection 14.2
symantec endpoint protection 12.0

Vulnerabilities, exploits, and PoCs

This repository contains the source code and assets for vulnerabilities discovered, exploited, or otherwise researched by members of Accenture's Advanced Attack and Readiness group CVE Product Blog Note CVE-2020-5825 Symantec Endpoint Protection Link CVE-2020-1062 Internet Explorer 11 Link CVE-2020-1030 Windows Print Spooler Link Multiple Avaya Aura Link

NVD-CWE-noinfo https://support.symantec.com/us/en/article.SYMSA1505.html https://nvd.nist.gov https://github.com/Accenture/AARO-Bugs

CVE-2020-5825

Vulnerability Summary

Vulnerability Trend

Github Repositories

References

Vulmon Search

About

Products

Connect