CVE-2017-13680

Опубликовано: 06 нояб. 2017

Источник: nvd

CVSS3: 5.5

CVSS2: 3.6

EPSS Низкий

Описание

Prior to SEP 12.1 RU6 MP9 & SEP 14 RU1 Symantec Endpoint Protection Windows endpoint can encounter a situation whereby an attacker could use the product's UI to perform unauthorized file deletes on the resident file system.

Ссылки

http://www.securityfocus.com/bid/101503
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1039775
Third Party Advisory
VDB Entry
https://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20171106_00
Issue Tracking
Vendor Advisory
http://www.securityfocus.com/bid/101503
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1039775
Third Party Advisory
VDB Entry
https://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20171106_00
Issue Tracking
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

Одно из

cpe:2.3:a:symantec:endpoint_protection:*:m9:*:*:*:*:*:*

Версия до 12.1 (исключая)

cpe:2.3:a:symantec:endpoint_protection:14:*:*:*:*:*:*:*

cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

EPSS

Процентиль: 28%

0.00102

Низкий

5.5 Medium

CVSS3

3.6 Low

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-p7c3-6329-8qq7