Vulnerabilities > CVE-2018-5240 - Unspecified vulnerability in Symantec Inventory 8.0/8.1

CVSS 8.0 - HIGH

Attack vector

ADJACENT_NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

low complexity

symantec

NVD

Published: 2018-07-25

Updated: 2019-10-03

Summary

The Inventory Plugin for Symantec Management Agent prior to 7.6 POST HF7, 8.0 POST HF6, or 8.1 RU7 may be susceptible to a privilege escalation vulnerability, which is a type of issue that allows a user to gain elevated access to resources that are normally protected at lower access levels.

Vulnerable Configurations

Part	Description	Count
Application	Symantec Symantec Inventory 8.0 Symantec Inventory 8.1 Symantec Inventory *	3

References

https://support.symantec.com/en_US/article.SYMSA1456.html
http://www.securityfocus.com/bid/104753
http://www.securitytracker.com/id/1041654