Vulnerabilities > CVE-2019-9703 - Unspecified vulnerability in Symantec Endpoint Encryption

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

symantec

nessus

NVD

Published: 2019-07-01

Updated: 2020-08-24

Summary

Symantec Endpoint Encryption, prior to SEE 11.3.0, may be susceptible to a privilege escalation vulnerability, which is a type of issue that allows a user to gain elevated access to resources that are normally protected at lower access levels.

Vulnerable Configurations

Part	Description	Count
Application	Symantec Symantec Endpoint Encryption 6.0 Symantec Endpoint Encryption 6.1 Symantec Endpoint Encryption 6.2 Symantec Endpoint Encryption 6.2.1 Symantec Endpoint Encryption 6.2.2 Symantec Endpoint Encryption 7.0 Symantec Endpoint Encryption 7.0.2 Symantec Endpoint Encryption 7.0.3 Symantec Endpoint Encryption 7.0.4 Symantec Endpoint Encryption 7.0.5 Symantec Endpoint Encryption 7.0.6 Symantec Endpoint Encryption 7.0.7 Symantec Endpoint Encryption 7.0.8 Symantec Endpoint Encryption 7.6 Symantec Endpoint Encryption 8.0 Symantec Endpoint Encryption 8.0.1 Symantec Endpoint Encryption 8.2 Symantec Endpoint Encryption 8.2.1 Symantec Endpoint Encryption 11.0 Symantec Endpoint Encryption 11.0.0 Symantec Endpoint Encryption 11.0.1 Symantec Endpoint Encryption 11.1.0 Symantec Endpoint Encryption 11.1.1 Symantec Endpoint Encryption 11.1.2 Symantec Endpoint Encryption 11.1.3 Symantec Endpoint Encryption 11.2.0 Symantec Endpoint Encryption 11.2.1	54

Nessus

NASL family	General
NASL id	SYMANTEC_ENCRYPTION_DESKTOP_SYMSA1485.NASL
description	The version of Symantec Encryption Desktop installed on the remote host is affected by two privilege escalation vulnerabilities. A local attacker could exploit these vulnerabilities to gain elevated access to the system.
last seen	2020-06-01
modified	2020-06-02
plugin id	126625
published	2019-07-11
reporter	This script is Copyright (C) 2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/126625
title	Symantec Encryption Desktop Multiple Vulnerabilities (SYMSA1485)
code	# # (C) Tenable Network Security, Inc. # include("compat.inc"); if (description) { script_id(126625); script_version("1.2"); script_cvs_date("Date: 2019/10/18 23:14:14"); script_cve_id("CVE-2019-9702", "CVE-2019-9703"); script_bugtraq_id(108795, 108796); script_name(english:"Symantec Encryption Desktop Multiple Vulnerabilities (SYMSA1485)"); script_summary(english:"Checks the Symantec Encryption Desktop version."); script_set_attribute(attribute:"synopsis", value: "The remote host has a data encryption application installed that is affected by multiple privilege escalation vulnerabilities."); script_set_attribute(attribute:"description", value: "The version of Symantec Encryption Desktop installed on the remote host is affected by two privilege escalation vulnerabilities. A local attacker could exploit these vulnerabilities to gain elevated access to the system."); script_set_attribute(attribute:"see_also", value:"https://support.symantec.com/us/en/article.SYMSA1485.html"); script_set_attribute(attribute:"solution", value: "Follow vendor guidance provided within the advisory."); script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:P"); script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C"); script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H"); script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C"); script_set_attribute(attribute:"cvss_score_source", value:"CVE-2019-9702"); script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available"); script_set_attribute(attribute:"vuln_publication_date", value:"2019/06/17"); script_set_attribute(attribute:"patch_publication_date", value:"2019/06/17"); script_set_attribute(attribute:"plugin_publication_date", value:"2019/07/11"); script_set_attribute(attribute:"plugin_type", value:"local"); script_set_attribute(attribute:"cpe", value:"cpe:/a:symantec:encryption_desktop"); script_set_attribute(attribute:"cpe", value:"cpe:/a:symantec:pgp_desktop"); script_end_attributes(); script_category(ACT_GATHER_INFO); script_family(english:"General"); script_copyright(english:"This script is Copyright (C) 2019 and is owned by Tenable, Inc. or an Affiliate thereof."); script_dependencies("symantec_encryption_desktop_installed.nbin", "macosx_symantec_encryption_desktop_installed.nbin"); script_require_keys("installed_sw/Symantec Encryption Desktop", "Settings/ParanoidReport"); exit(0); } include("vcf.inc"); if (report_paranoia < 2) audit(AUDIT_PARANOID); if (get_kb_item("SMB/Registry/Enumerated")) win_local = TRUE; app_info = vcf::get_app_info(app:"Symantec Encryption Desktop", win_local:win_local); vcf::report_results(app_info:app_info, fix:"See Advisory", severity:SECURITY_WARNING);

NASL family	General
NASL id	SYMANTEC_ENDPOINT_ENCRYPTION_DRIVE_ENCRYPTION_SYMSA1485.NASL
description	The version of the Symantec Endpoint Encryption (SEE) installed on the remote Windows host is prior to 11.3.0. It is, therefore, affected by a two privilege escalation vulnerabilities. An authenticated, local attacker could exploit these vulnerabilities to gain elevated access to the system.
last seen	2020-06-01
modified	2020-06-02
plugin id	126626
published	2019-07-11
reporter	This script is Copyright (C) 2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/126626
title	Symantec Endpoint Encryption < 11.3.0 Multiple Vulnerabilities (SYMSA1485)

Summary

Vulnerable Configurations

Nessus

References