First published: Mon Dec 09 2019(Updated: )
Symantec Industrial Control System Protection (ICSP), versions 6.x.x, may be susceptible to an unauthorized access issue that could potentially allow a threat actor to create or modify application user accounts without proper authentication.
Credit: secure@symantec.com
Affected Software | Affected Version | How to fix |
---|---|---|
Symantec Industrial Control System Protection | >=6.0.0<6.1.1.123 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID of Symantec Industrial Control System Protection (ICSP) vulnerability is CVE-2019-18380.
The severity of CVE-2019-18380 is medium with a severity value of 6.5.
Symantec Industrial Control System Protection (ICSP) versions 6.x.x are affected by CVE-2019-18380.
CVE-2019-18380 allows a threat actor to create or modify application user accounts without proper authentication.
Please refer to the official Symantec support article (link provided in the references) for information on available fixes for CVE-2019-18380.