PT-2025-5375 · Symantec · Symantec Privileged Access Management
Stefan Grönke
·
Published
2025-01-30
·
Updated
2025-02-07
·
CVE-2025-24503
CVSS v4.0
9.3
Critical
| Vector | AV:A/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H |
Name of the Vulnerable Software and Affected Versions
Symantec Privileged Access Management versions prior to 4.2.1
Description
A malicious actor can fix the session of a Symantec Privileged Access Management user by tricking the user into clicking a specially crafted link to the PAM server. This issue is related to cross-site request forgery. The exploitation of this issue may allow a remote attacker to hijack a user's session.
Recommendations
For Symantec Privileged Access Management versions prior to 4.2.1, update to version 4.2.1 to resolve the issue. As a temporary workaround, consider restricting access to the PAM server to minimize the risk of exploitation. Avoid using specially crafted links to the PAM server until the issue is resolved.
Fix
Session Fixation
CSRF
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Symantec Privileged Access Management