Vulnerabilities > CVE-2022-25623 - Unspecified vulnerability in Symantec Management Agent 8.5/8.6

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

symantec

NVD

Published: 2022-03-04

Updated: 2023-08-08

Summary

The Symantec Management Agent is susceptible to a privilege escalation vulnerability. A low privilege local account can be elevated to the SYSTEM level through registry manipulations.

Vulnerable Configurations

Part	Description	Count
Application	Symantec Symantec Management Agent 8.5 Symantec Management Agent 8.6	2

References

https://support.broadcom.com/external/content/SecurityAdvisories/0/20366