Elevation of Privilege Vulnerability in Symantec Endpoint Protection by Broadcom
CVE-2022-25631

7.8HIGH

Key Information:

Vendor: Broadcom
Status: Symantec Endpoint Protection
Vendor: CVE Published:; 20 January 2023

What is CVE-2022-25631?

An Elevation of Privilege vulnerability has been identified in Symantec Endpoint Protection, allowing attackers to exploit the software and potentially gain unauthorized access to sensitive functionalities or data. This issue highlights the importance of keeping security applications up to date and monitoring for any potential threats associated with outdated software versions. Users are advised to implement the latest updates to ensure safety and mitigate possible risks.

Affected Version(s)

Symantec Endpoint Protection 14.3

References

https://support.broadcom.com/external/content/SecurityAdv...

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 20, 2023
Vulnerability Reserved
Feb 21, 2022