PT-2026-5142 · Symantec · Symantec Endpoint Protection

Sandro Poppi

Publicado

2026-01-28

Atualizado

2026-01-28

CVE-2025-13918

CVSS v3.1

6.7

Média

Vetor

AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Symantec Endpoint Protection versions prior to 14.3 RU10 Patch 1 Symantec Endpoint Protection versions prior to 14.3 RU9 Patch 2 Symantec Endpoint Protection versions prior to 14.3 RU8 Patch 3

Description The software may be susceptible to an Elevation of Privilege issue, which could allow an attacker to gain elevated access to normally protected resources.

Recommendations Update Symantec Endpoint Protection to version 14.3 RU10 Patch 1 or later. Update Symantec Endpoint Protection to version 14.3 RU9 Patch 2 or later. Update Symantec Endpoint Protection to version 14.3 RU8 Patch 3 or later.

Correção

LPE

Improper Privilege Management

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-269

Identificadores relacionados

CVE-2025-13918

Produtos afetados

Symantec Endpoint Protection

PT-2026-5142 · Symantec · Symantec Endpoint Protection

CVE-2025-13918

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 4