Kernel Memory Disclosure in Symantec Norton Security and SEP Products
CVE-2018-18366

6.5MEDIUM

Key Information:

Vendor: Symantec Corporation
Status: Norton Security; Sep (windows Client); Sep Sbe; Sep Cloud
Vendor: CVE Published:; 25 April 2019

Summary

A vulnerability exists in Symantec Norton Security and SEP products, where a specially crafted IRP request can lead to kernel memory disclosure. This issue allows the driver to return uninitialized memory, potentially exposing sensitive data in the system memory. Users of affected versions are advised to upgrade their software to mitigate the risk and enhance the security of their systems.

Affected Version(s)

Norton Security Prior to 22.16.3

SEP (Windows client) Prior to and including 12.1 RU6 MP9

SEP (Windows client) Prior to 14.2 RU1

References

https://support.symantec.com/en_US/article.SYMSA1479.html

x_refsource_CONFIRM

http://www.securityfocus.com/bid/107994

vdb-entryx_refsource_BID

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published
Apr 25, 2019
Vulnerability Reserved
Oct 15, 2018