Remote Code Execution Vulnerability in Broadcom Products
CVE-2025-5333

9.5CRITICAL

Key Information:

Vendor: Broadcom
Status: Symantec It Management Suite
Vendor: CVE Published:; 6 July 2025

What is CVE-2025-5333?

A remote code execution vulnerability exists in Broadcom Security Solutions, allowing attackers to execute arbitrary code within the context of the vulnerable service process. This can lead to unauthorized actions and system compromise. It is important for users of affected products to implement the necessary patches and security updates to mitigate potential risks.

Affected Version(s)

Symantec IT Management Suite 8.6.x, 8.7.x 8.8

References

https://support.broadcom.com/web/ecx/support-content-noti...

vendor-advisory

CVSS V4

Score:

9.5

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 6, 2025
Vulnerability Reserved
May 29, 2025

Credit

Eleftherios Panos ([email protected])