CVE-2016-6591

7.1HIGH

Key Information

Vendor: Symantec
Status: Norton App Lock
Vendor: CVE Published:; 8 January 2020

Summary

A security bypass vulnerability exists in Symantec Norton App Lock 1.0.3.186 and earlier if application pinning is enabled, which could let a local malicious user bypass security restrictions.

Affected Version(s)

Norton App Lock = 1.0.3.186 and earlier

Refferences

http://www.securityfocus.com/bid/94343

x_refsource_MISC

https://support.symantec.com/us/en/article.symsa1386.html

x_refsource_CONFIRM

CVSS V3.1

Score:

7.1

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

None

Attack Vector:

Physical

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published
Jan 8, 2020
Vulnerability Reserved
Aug 3, 2016

Collectors

NVD DatabaseMitre Database