CVE-2008-2288

CWE-2643 documents3 sources
Severity
3.6LOW
EPSS
0.1%
top 74.68%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Symantec Altiris Deployment Solution
Timeline
PublishedMay 18
Latest updateMay 1

Description

Symantec Altiris Deployment Solution 6.8.x and 6.9.x before 6.9.176 has insufficient access control for deletion and modification of registry keys, which allows local users to cause a denial of service or obtain sensitive information.

CVSS vector

AV:L/AC:L/C:N/I:P/A:PExploitability: 3.9 | Impact: 4.9

Affected Packages1 packages

Patches

Patch: www.symantec.com โ†—Patch: www.symantec.com โ†—

๐Ÿ”ดVulnerability Details

2
GHSA
GHSA-4fp5-977c-5g2w: Symantec Altiris Deployment Solution 6โ†—2022-05-01
โ–ถ
CVEList
CVE-2008-2288: Symantec Altiris Deployment Solution 6โ†—2008-05-18
โ–ถ
CVE-2008-2288 (LOW CVSS 3.6) | Symantec Altiris Deployment Solutio | cvebase.io