CVE-2020-5836
First published: Mon May 11 2020(Updated: )
Symantec Endpoint Protection, prior to 14.3, can potentially reset the ACLs on a file as a limited user while Symantec Endpoint Protection's Tamper Protection feature is disabled.
Credit: secure@symantec.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Symantec Endpoint Protection | <14.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this Symantec Endpoint Protection vulnerability?
The vulnerability ID for this Symantec Endpoint Protection vulnerability is CVE-2020-5836.
What is the title of the vulnerability?
The title of the vulnerability is "Symantec Endpoint Protection prior to 14.3 can potentially reset the ACLs on a file as a limited user."
What is the affected software?
The affected software is Symantec Endpoint Protection prior to version 14.3.
What is the severity of CVE-2020-5836?
The severity of CVE-2020-5836 is high with a severity value of 7.8.
How can I fix the Symantec Endpoint Protection vulnerability?
To fix the Symantec Endpoint Protection vulnerability, update to version 14.3 or later.
- collector/nvd-index
- agent/severity
- agent/references
- agent/author
- agent/tags
- agent/description
- agent/type
- agent/event
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- vendor/symantec
- canonical/symantec endpoint protection