Privilege Escalation Vulnerability in Symantec Diagnostic Tool by Broadcom
CVE-2025-0893

7.8HIGH

Key Information:

Vendor: Symantec
Status: Symantec Diagnostic Tool
Vendor: CVE Published:; 19 February 2025

Badges

👾 Exploit Exists📰 News Worthy

Summary

The Symantec Diagnostic Tool, known for assisting in the diagnosis of system issues, is susceptible to a privilege escalation vulnerability in versions prior to 3.0.79. This issue could allow an unauthorized user to gain elevated privileges, leading to potential unauthorized access and manipulation of critical system functions. It is crucial for users to update to the latest version to mitigate risks associated with this vulnerability. For further remediation steps and technical details, refer to the official advisory.

Affected Version(s)

Symantec Diagnostic Tool 3.0.78 or earlier

News Articles

GBHackers News

CVE-2025-0893

Symantec Diagnostic Tool Flaw Enables Unauthorized Privilege Escalation

Symantec, a division of Broadcom, has released a critical security update to address a high-severity vulnerability identified in its Symantec Diagnostic Tool (SymDiag).

References

https://support.broadcom.com/web/ecx/support-content-noti...

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

👾
Exploit known to exist
Feb 20, 2025
📰
First article discovered by GBHackers News
Feb 20, 2025
Vulnerability published
Feb 19, 2025
Vulnerability Reserved
Jan 30, 2025