Privilege Escalation in Symantec Management Agent

20366

31 March 2022

02 March 2022

CLOSED

HIGH

8.4

Summary

The Symantec Management Agent is susceptible to a privilege escalation vulnerability. A low privilege local account can be elevated to the SYSTEM level through registry manipulations.

 

Affected Product(s)                                           

Symantec Management Agent 

CVE

Affected Version(s)

Remediation

CVE-2022-25623

8.5
8.6

Please install one of the point fixes available for 8.5 RU4, 8.6 RU1, and 8.6 RU2. See the References section for KB article links.

 

Issue Details

CVE-2022-25623

Severity / CVSS v3.1:

High / 8.4 (AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)

References:

NVD: CVE-2022-25623

Impact:

Privilege escalation

Description:

A low privilege local account can be elevated to the SYSTEM level through registry manipulations.

 

References

 

Acknowledgements

CVE-2022-25623: Marius Gabriel Mihai

 

Revisions

2022-03-31 updated the cvss base score and attack vector (user interaction metric from "Required" to "None")

2022-03-02 initial public release