PT-2020-18743 · Symantec · Symantec Endpoint Protection Manager+1

Published

2020-05-11

·

Updated

2020-05-14

·

CVE-2020-5834

CVSS v3.1

5.3

Medium

VectorAV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
Name of the Vulnerable Software and Affected Versions Symantec Endpoint Protection Manager versions prior to 14.3
Description The issue allows a remote actor to determine the size of files in the directory through a directory traversal attack.
Recommendations For versions prior to 14.3, update to version 14.3 or later to resolve the issue.

Fix

Path traversal

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Weakness Enumeration

CWE-22

Related Identifiers

CVE-2020-5834

Affected Products

Symantec Endpoint Protection Manager
Symantec Endpoint Protection Server