PT-2020-18735 · Symantec · Symantec Endpoint Protection+2

Published

2020-02-11

Updated

2021-07-21

CVE-2020-5826

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Symantec Endpoint Protection versions prior to 14.2 RU2 MP1 Symantec Endpoint Protection Small Business Edition versions prior to 14.2.5569.2100

Description The issue is related to an out of bounds vulnerability, which occurs when an application reads memory outside of the allocated bounds. This can lead to information disclosure.

Recommendations For Symantec Endpoint Protection versions prior to 14.2 RU2 MP1, update to version 14.2 RU2 MP1 or later. For Symantec Endpoint Protection Small Business Edition versions prior to 14.2.5569.2100, update to version 14.2.5569.2100 or later.

Fix

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-125

Related Identifiers

CVE-2020-5826

ZDI-20-229

Affected Products

Symantec Endpoint Protection

Symantec Endpoint Protection Client

Symantec Endpoint Protection Small Business Edition

PT-2020-18735 · Symantec · Symantec Endpoint Protection+2

CVE-2020-5826

Weakness Enumeration

Related Identifiers

Affected Products

References · 4