Unrated severityNVD Advisory· Published Dec 1, 2022· Updated Apr 24, 2025

CVE-2022-37017

Description

Symantec Endpoint Protection (Windows) agent, prior to 14.3 RU6/14.3 RU5 Patch 1, may be susceptible to a Security Control Bypass vulnerability, which is a type of issue that can potentially allow a threat actor to circumvent existing security controls. This CVE applies narrowly to the Client User Interface Password protection and Policy Import/Export Password protection, if it has been enabled.

Affected products

Chatwoot/Symantec Endpoint Protectionv5
Range: 14.3 RU5

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/21014mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.006
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000