PT-2020-18730 · Symantec · Symantec Endpoint Protection+2

Published

2020-02-11

Updated

2021-07-21

CVE-2020-5821

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Symantec Endpoint Protection versions prior to 14.2 RU2 MP1 Symantec Endpoint Protection Small Business Edition versions prior to 14.2.5569.2100

Description The issue is related to a DLL injection vulnerability. This type of issue occurs when an individual attempts to execute their own code in place of legitimate code to perform an exploit.

Recommendations For Symantec Endpoint Protection versions prior to 14.2 RU2 MP1, update to version 14.2 RU2 MP1 or later. For Symantec Endpoint Protection Small Business Edition versions prior to 14.2.5569.2100, update to version 14.2.5569.2100 or later.

Fix

Uncontrolled Search Path Element

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-427

Related Identifiers

CVE-2020-5821

Affected Products

Symantec Endpoint Protection

Symantec Endpoint Protection Client

Symantec Endpoint Protection Small Business Edition

PT-2020-18730 · Symantec · Symantec Endpoint Protection+2

CVE-2020-5821

Weakness Enumeration

Related Identifiers

Affected Products

References · 3