Denial of Service Vulnerability in Symantec Encryption Desktop
CVE-2017-13679

4.2MEDIUM

Key Information:

Vendor: Symantec
Status: Encryption Desktop
Vendor: CVE Published:; 10 October 2017

What is CVE-2017-13679?

A denial of service vulnerability exists in Symantec Encryption Desktop, allowing remote attackers to disrupt the availability of the application and its services. This disruption can render specific machines or network resources inaccessible, affecting legitimate users' ability to utilize the affected system. The flaw exists in versions prior to SED 10.4.1 MP2HF1. Organizations using vulnerable versions are advised to apply the necessary updates to mitigate potential impacts.

References

http://www.securityfocus.com/bid/101090

vdb-entryx_refsource_BID

https://www.symantec.com/security_response/securityupdate...

x_refsource_CONFIRM

CVSS V3.1

Score:

4.2

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Adjacent Network

Attack Complexity:

High

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 10, 2017
Vulnerability Reserved
Aug 24, 2017