Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2017-6331
HistoryNov 06, 2017 - 11:29 p.m.

CVE-2017-6331

2017-11-0623:29:00
[email protected]
web.nvd.nist.gov
7

CVSS2

3.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:P/A:P

CVSS3

7.1

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

AI Score

6.8

Confidence

High

EPSS

0.925

Percentile

99.0%

JSON

Prior to SEP 14 RU1 Symantec Endpoint Protection product can encounter an issue of Tamper-Protection Bypass, which is a type of attack that bypasses the real time protection for the application that is run on servers and clients.

Affected configurations

Nvd
Node
symantecendpoint_protectionRange<14.0
VendorProductVersionCPE
symantecendpoint_protection*cpe:2.3:a:symantec:endpoint_protection:*:*:*:*:*:*:*:*

Related

cvelist 1
packetstorm 1
zdt 1
openvas 1
exploitpack 1
prion 1
exploitdb 1
cve 1
symantec 1
nessus 1
cvelist
cvelist
CVE-2017-6331
2017-11-06 23:00:00
packetstorm
packetstorm
Symantec Endpoint Protection 12.1.6 Tamper Protection Bypass
2017-11-12 00:00:00
zdt
zdt
Symantec Endpoint Protection v12.1 / Tamper-Protection Bypass Exploit
2017-11-12 00:00:00
openvas
openvas
Symantec Endpoint Protection Security Bypass Vulnerability (SYM17-011)
2017-11-08 00:00:00
exploitpack
exploitpack
Symantec Endpoint Protection 12.1 - Tamper-Protection Bypass
2017-11-10 00:00:00
prion
prion
Design/Logic Flaw
2017-11-06 23:29:00
exploitdb
exploitdb
Symantec Endpoint Protection 12.1 - Tamper-Protection Bypass
2017-11-10 00:00:00
cve
cve
CVE-2017-6331
2017-11-06 23:29:00
symantec
symantec
Symantec Endpoint Protection Multiple Issues
2017-11-06 08:00:00
nessus
nessus
Symantec Endpoint Protection Client 12.1.x < 12.1 RU6 MP9 / 14.0.x < 14.0 RU1 Multiple Vulnerabilities (SYM17-011)
2017-11-08 00:00:00

CVSS2

3.6

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:P/A:P

CVSS3

7.1

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

AI Score

6.8

Confidence

High

EPSS

0.925

Percentile

99.0%

JSON
Related for NVD:CVE-2017-6331
cvelist1packetstorm1zdt1openvas1exploitpack1prion1exploitdb1cve1symantec1nessus1