Vulnerabilities > CVE-2016-6591 - Incorrect Authorization vulnerability in Symantec Norton APP Lock 1.0.3.186

047910
CVSS 7.1 - HIGH
Attack vector
PHYSICAL
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
NONE
low complexity
symantec
CWE-863

Summary

A security bypass vulnerability exists in Symantec Norton App Lock 1.0.3.186 and earlier if application pinning is enabled, which could let a local malicious user bypass security restrictions.

Vulnerable Configurations

Part Description Count
Application
Symantec
2

Common Weakness Enumeration (CWE)