Vulnerabilities > CVE-2018-5240 - Unspecified vulnerability in Symantec Inventory 8.0/8.1

CVSS 5.2 - MEDIUM

Attack vector

ADJACENT_NETWORK

Attack complexity

LOW

Privileges required

SINGLE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

low complexity

symantec

NVD

Published: 2018-07-25

Updated: 2019-10-03

Summary

The Inventory Plugin for Symantec Management Agent prior to 7.6 POST HF7, 8.0 POST HF6, or 8.1 RU7 may be susceptible to a privilege escalation vulnerability, which is a type of issue that allows a user to gain elevated access to resources that are normally protected at lower access levels.

Vulnerable Configurations

Part	Description	Count
Application	Symantec Symantec Inventory * Symantec Inventory 8.0 Symantec Inventory 8.1	3

References

http://www.securityfocus.com/bid/104753
http://www.securitytracker.com/id/1041654
https://support.symantec.com/en_US/article.SYMSA1456.html