Privilege Escalation Vulnerability in Symantec Diagnostic Tool by Broadcom
CVE-2025-0893

7.8HIGH

Key Information:

Vendor: Symantec
Status: Symantec Diagnostic Tool
Vendor: CVE Published:; 19 February 2025

Summary

The Symantec Diagnostic Tool, known for assisting in the diagnosis of system issues, is susceptible to a privilege escalation vulnerability in versions prior to 3.0.79. This issue could allow an unauthorized user to gain elevated privileges, leading to potential unauthorized access and manipulation of critical system functions. It is crucial for users to update to the latest version to mitigate risks associated with this vulnerability. For further remediation steps and technical details, refer to the official advisory.

Affected Version(s)

Symantec Diagnostic Tool 3.0.78 or earlier

References

https://support.broadcom.com/web/ecx/support-content-noti...

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Feb 19, 2025
Vulnerability Reserved
Jan 30, 2025