High severity7.8NVD Advisory· Published Nov 6, 2017· Updated Jun 17, 2026
CVE-2017-13681
CVE-2017-13681
Description
Symantec Endpoint Protection prior to SEP 12.1 RU6 MP9 could be susceptible to a privilege escalation vulnerability, which is a type of issue that allows a user to gain elevated access to resources that are normally protected at lower access levels. In the circumstances of this issue, the capability of exploit is limited by the need to perform multiple file and directory writes to the local filesystem and as such, is not feasible in a standard drive-by type attack.
Affected products
3cpe:2.3:a:symantec:endpoint_protection:*:m9:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:symantec:endpoint_protection:*:m9:*:*:*:*:*:*range: <12.1
- (no CPE)range: <12.1 RU6 MP9
- Symantec Corporation/Symantec Endpoint Protectionv5Range: Prior to SEP 12.1 RU6 MP9
Patches
Vulnerability mechanics
References
3- www.securityfocus.com/bid/101504nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1039775nvdThird Party AdvisoryVDB Entry
- www.symantec.com/security_response/securityupdates/detail.jspnvdIssue TrackingThird Party Advisory
News mentions
0No linked articles in our index yet.