PT-2020-18744 · Symantec · Symantec Endpoint Protection Manager+1

Published

2020-05-11

Updated

2020-05-14

CVE-2020-5835

CVSS v3.1

7.0

High

Vector

AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Symantec Endpoint Protection Manager versions prior to 14.3

Description The issue is related to a race condition in the client remote deployment feature, which could potentially lead to an elevation of privilege on the remote machine.

Recommendations For versions prior to 14.3, update to version 14.3 or later to resolve the issue.

Fix

LPE

Race Condition

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-362

Related Identifiers

CVE-2020-5835

Affected Products

Symantec Endpoint Protection Manager

Symantec Endpoint Protection Server

PT-2020-18744 · Symantec · Symantec Endpoint Protection Manager+1

CVE-2020-5835

Weakness Enumeration

Related Identifiers

Affected Products

References · 3