Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2020-5826

Symantec Endpoint Protection (SEP) and Symantec Endpoint Protection Small Business Edition (SEP SBE), prior to 14.2 RU2 MP1 and prior to 14.2.5569.2100 respectively, may be susceptible to an out of bounds vulnerability, which is a type of issue that results in an existing application reading memory outside of the bounds of the memory that had been allocated to the program.

Published

2020-02-11T18:15:17.073

Last Modified

2024-11-21T05:34:39.330

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 5.5 (MEDIUM)

CVSSv2 Vector

AV:L/AC:L/Au:N/C:N/I:N/A:P

Access Vector: LOCAL
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: NONE
Integrity Impact: NONE
Availability Impact: PARTIAL

Exploitability Score

3.9

Impact Score

2.9

Weaknesses

Type: Primary
CWE-125

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	symantec	endpoint_protection	11.0	Yes
Application	symantec	endpoint_protection	11.0	Yes
Application	symantec	endpoint_protection	11.0	Yes
Application	symantec	endpoint_protection	11.0	Yes
Application	symantec	endpoint_protection	11.0	Yes
Application	symantec	endpoint_protection	11.0	Yes
Application	symantec	endpoint_protection	11.0	Yes
Application	symantec	endpoint_protection	11.0	Yes
Application	symantec	endpoint_protection	11.0	Yes
Application	symantec	endpoint_protection	11.0	Yes
Application	symantec	endpoint_protection	11.0	Yes
Application	symantec	endpoint_protection	11.0	Yes
Application	symantec	endpoint_protection	11.0	Yes
Application	symantec	endpoint_protection	11.0	Yes
Application	symantec	endpoint_protection	11.0	Yes
Application	symantec	endpoint_protection	11.0	Yes
Application	symantec	endpoint_protection	11.0	Yes
Application	symantec	endpoint_protection	11.0	Yes
Application	symantec	endpoint_protection	11.0	Yes
Application	symantec	endpoint_protection	12.1	Yes
Application	symantec	endpoint_protection	12.1	Yes
Application	symantec	endpoint_protection	12.1	Yes
Application	symantec	endpoint_protection	12.1	Yes
Application	symantec	endpoint_protection	12.1	Yes
Application	symantec	endpoint_protection	12.1	Yes
Application	symantec	endpoint_protection	12.1	Yes
Application	symantec	endpoint_protection	12.1	Yes
Application	symantec	endpoint_protection	12.1	Yes
Application	symantec	endpoint_protection	12.1	Yes
Application	symantec	endpoint_protection	12.1	Yes
Application	symantec	endpoint_protection	12.1	Yes
Application	symantec	endpoint_protection	12.1	Yes
Application	symantec	endpoint_protection	12.1	Yes
Application	symantec	endpoint_protection	12.1	Yes
Application	symantec	endpoint_protection	12.1	Yes
Application	symantec	endpoint_protection	12.1	Yes
Application	symantec	endpoint_protection	12.1	Yes
Application	symantec	endpoint_protection	12.1	Yes
Application	symantec	endpoint_protection	12.1	Yes
Application	symantec	endpoint_protection	12.1	Yes
Application	symantec	endpoint_protection	12.1	Yes
Application	symantec	endpoint_protection	14.0.0	Yes
Application	symantec	endpoint_protection	14.0.0	Yes
Application	symantec	endpoint_protection	14.0.0	Yes
Application	symantec	endpoint_protection	14.0.1	Yes
Application	symantec	endpoint_protection	14.0.1	Yes
Application	symantec	endpoint_protection	14.0.1	Yes
Application	symantec	endpoint_protection	14.2	Yes
Application	symantec	endpoint_protection	14.2	Yes
Application	symantec	endpoint_protection	14.2	Yes
Application	symantec	endpoint_protection	14.2	Yes
Application	symantec	endpoint_protection	14.2	Yes
Application	symantec	endpoint_protection	12.0	Yes
Application	symantec	endpoint_protection	12.0	Yes
Application	symantec	endpoint_protection	12.1	Yes
Application	symantec	endpoint_protection	12.1	Yes
Application	symantec	endpoint_protection	12.1	Yes
Application	symantec	endpoint_protection	12.1	Yes
Application	symantec	endpoint_protection	12.1	Yes
Application	symantec	endpoint_protection	12.1	Yes
Application	symantec	endpoint_protection	12.1	Yes
Application	symantec	endpoint_protection	12.1	Yes
Application	symantec	endpoint_protection	12.1	Yes
Application	symantec	endpoint_protection	12.1	Yes
Application	symantec	endpoint_protection	12.1	Yes
Application	symantec	endpoint_protection	12.1	Yes
Application	symantec	endpoint_protection	12.1	Yes
Application	symantec	endpoint_protection	12.1	Yes
Application	symantec	endpoint_protection	12.1	Yes
Application	symantec	endpoint_protection	12.1	Yes
Application	symantec	endpoint_protection	12.1	Yes
Application	symantec	endpoint_protection	12.1	Yes
Application	symantec	endpoint_protection	12.1	Yes
Application	symantec	endpoint_protection	12.1	Yes
Application	symantec	endpoint_protection	12.1	Yes
Application	symantec	endpoint_protection	12.1	Yes
Application	symantec	endpoint_protection	12.1	Yes

References

https://support.symantec.com/us/en/article.SYMSA1505.html Vendor Advisory ([email protected])
https://support.symantec.com/us/en/article.SYMSA1505.html Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)