Vulnerabilities > CVE-2019-9695 - Unspecified vulnerability in Symantec Norton Core Firmware

CVSS 6.8 - MEDIUM

Attack vector

PHYSICAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

low complexity

symantec

NVD

Published: 2019-03-29

Updated: 2021-07-21

Summary

Norton Core prior to v278 may be susceptible to an arbitrary code execution issue, which is a type of vulnerability that has the potential of allowing an individual to execute arbitrary commands or code on a target machine or in a target process. Note that this exploit is only possible with direct physical access to the device.

Vulnerable Configurations

Part	Description	Count
OS	Symantec Symantec Norton Core Firmware *	1
Hardware	Symantec Symantec Norton Core -	1

References

https://support.symantec.com/en_US/article.SYMSA1476.html
http://www.securityfocus.com/bid/107478