PT-2022-6111 · Symantec · Symantec Endpoint Protection

Published

2022-07-28

Updated

2025-04-24

CVE-2022-37016

CVSS v2.0

Critical

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Symantec Endpoint Protection (Windows) (affected versions not specified)

Description The issue is related to a Privilege Escalation vulnerability, which can be exploited by an attacker to gain elevated access to protected resources. This vulnerability is associated with insufficient access control in the Symantec Endpoint Protection software. An attacker may attempt to compromise the software application to gain elevated access to resources that are normally protected from an application or user.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Improper Privilege Management

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-269

Related Identifiers

BDU:2023-00051

CVE-2022-37016

Affected Products

Symantec Endpoint Protection

PT-2022-6111 · Symantec · Symantec Endpoint Protection

CVE-2022-37016

Weakness Enumeration

Related Identifiers

Affected Products

References · 8